diff options
author | Jeff King <peff@peff.net> | 2011-12-08 05:25:54 -0500 |
---|---|---|
committer | Junio C Hamano <gitster@pobox.com> | 2011-12-13 21:09:06 -0800 |
commit | c3ea051544cb1d98a5ae7f64d077084a9a5db5c1 (patch) | |
tree | 949d8dc8bed5d4647af0f41ac37b462f4c1163e5 /Documentation/RelNotes/1.5.3.txt | |
parent | stripspace: fix outdated comment (diff) | |
download | tgif-c3ea051544cb1d98a5ae7f64d077084a9a5db5c1.tar.xz |
blame: don't overflow time buffer
When showing the raw timestamp, we format the numeric
seconds-since-epoch into a buffer, followed by the timezone
string. This string has come straight from the commit
object. A well-formed object should have a timezone string
of only a few bytes, but we could be operating on data
pushed by a malicious user.
Signed-off-by: Jeff King <peff@peff.net>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'Documentation/RelNotes/1.5.3.txt')
0 files changed, 0 insertions, 0 deletions