SECURITY FIX: lzw.c: fix handling of corrupt compress(1)ed data..
Update lzw.c to the current FreeBSD version, which includes at
least the following security fix from
git://git.freebsd.org/freebsd:master:usr.bin/compress/zopen.c:
commit
2902cb5e28a1e38bce859ef1ae14e9d22fe50214
Author: bz <bz@FreeBSD.org>
Date: 2011-09-28 08:47:17 +0000
Fix handling of corrupt compress(1)ed data. [11:04]
Add missing length checks on unix socket addresses. [11:05]
Approved by: so (cperciva)
Approved by: re (kensmith)
Security: FreeBSD-SA-11:04.compress
Security: CVE-2011-2895 [11:04]
Security: FreeBSD-SA-11:05.unix
For easier future diff(1)ing with FreeBSDs zopen.c the file was
also updated in respect to typenames and style.
Lead into correct direction by
John Dodson (johnd AT physiol DOT usyd DOT edu DOT au).