diff options
Diffstat (limited to 'tests/CVE-2019-14866.at')
-rw-r--r-- | tests/CVE-2019-14866.at | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/tests/CVE-2019-14866.at b/tests/CVE-2019-14866.at new file mode 100644 index 0000000..e877b39 --- /dev/null +++ b/tests/CVE-2019-14866.at @@ -0,0 +1,35 @@ +# Process this file with autom4te to create testsuite. -*- Autotest -*- +# Copyright (C) 2009-2019 Free Software Foundation, Inc. +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 3, or (at your option) +# any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see <http://www.gnu.org/licenses/>. + +AT_SETUP([CVE-2019-14866 (tar header size overflow)]) +AT_CHECK([ +# Use -s (seek) instead of -l (size) to speed up file creation. +# This can fail if the device lacks sufficient space. Skip the test, then. +if genfile -s 16G -f file; then + echo file | cpio -H tar -o > a.tar + s=$? + rm -f file + exit $? +else + AT_SKIP_TEST +fi +], +[0], +[], +[cpio: file: value size 17179869184 out of allowed range 0..8589934591 +2 blocks +]) +AT_CLEANUP |