Author: Moritz Muehlenhoff <jmm@inutil.org> Description: CVE-2008-5030 diff -Naurp libcdaudio.orig/src/cddb.c libcdaudio/src/cddb.c --- libcdaudio.orig/src/cddb.c 2008-09-07 23:53:16.000000000 +0000 +++ libcdaudio/src/cddb.c 2008-11-12 21:32:21.000000000 +0000 @@ -1679,7 +1679,7 @@ cddb_read_disc_data(int cd_desc, struct free(file); while(!feof(cddb_data)) { - fgets(inbuffer, 512, cddb_data); + fgets(inbuffer, 256, cddb_data); cddb_process_line(inbuffer, data); }