From: František Dvořák <valtri@civ.zcu.cz>
Date: Fri, 15 Feb 2013 08:12:33 +0000 (+0000)
Subject: Possible buffer overflow in HTML generator (code already refactored on HEAD).
X-Git-Url: http://scientific.zcu.cz/git/?a=commitdiff_plain;h=de0858cf00f410a35a8904883439cebbe4e8d43d;p=jra1mw.git

Possible buffer overflow in HTML generator (code already refactored on HEAD).
---

diff --git a/org.glite.lb.server/src/lb_text.c b/org.glite.lb.server/src/lb_text.c
index 31d6536..9e15bea 100644
--- a/org.glite.lb.server/src/lb_text.c
+++ b/org.glite.lb.server/src/lb_text.c
@@ -295,7 +295,7 @@ int edg_wll_ConfigurationToText(edg_wll_Context ctx, int admin, char **message){
 		if (ctx->authz_policy_file && (fd = open(ctx->authz_policy_file, O_RDONLY)) >= 0){
 			off_t size = lseek(fd, 0, SEEK_END) - lseek(fd, 0, SEEK_SET);
 			if (size){
-				char *pft = (char*)calloc(sizeof(char), size);
+				char *pft = (char*)calloc(sizeof(char), size + 1);
 				read(fd, pft, size);
 				close(fd);
 				pf = escape_text(pft);