[pkg-gnupg-maint] Bug#1074127: gnupg2: write_status_text_and_buffer fails to escape some non-printable characters
Andreas Metzler
ametzler at bebt.de
Mon Jun 24 17:43:35 BST 2024
Control:
forwarded -1 https://dev.gnupg.org/T7176
On 2024-06-23 Baptiste Beauplat <lyknode at debian.org> wrote:
> Source: gnupg2
> Severity: important
> Tags: patch upstream
> X-Debbugs-Cc: lyknode at debian.org
> Dear maintainer,
> The check for escaping characters in `write_status_text_and_buffer` is
> written in `g10/cpr.c` as:
> ```c
> 333 if (*s == '%' || *(const byte*)s <= lower_limit
> 334 || *(const byte*)s == 127 )
> ```
> Except `byte` is defined as an unsigned char, with non-printable values
> exceeding 127.
> Therefor the check should be `>= 127` and not `== 127`.
[...]
Thank you, I have forwarded this to the upstream tracker.
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
More information about the pkg-gnupg-maint
mailing list