K 10
svn:author
V 7
delphij
K 8
svn:date
V 27
2010-03-25T20:02:54.102581Z
K 7
svn:log
V 369
The rmt client in GNU cpio could have a heap overflow when a malicious
remote tape service returns deliberately crafted packets containing
more data than requested.

Fix this by checking the returned amount of data and bail out when it
is more than what we requested.

PR:		gnu/145010
Submitted by:	naddy
Reviewed by:	imp
MFC after:	immediately
Security:	CVE-2010-0624

END