)]}'
{
  "commit": "c1099d8f7ecdc18278a91ed545dc5e224a29ec54",
  "tree": "256397cb2fdd75f385eae063502253f1985956ae",
  "parents": [
    "8b6690ccbd9cf5f81aa2dc1a2095e75af172f819"
  ],
  "author": {
    "name": "Carl-Daniel Hailfinger",
    "email": "c-d.hailfinger.devel.2006@gmx.net",
    "time": "Sun Mar 13 17:36:49 2016 +0000"
  },
  "committer": {
    "name": "Carl-Daniel Hailfinger",
    "email": "c-d.hailfinger.devel.2006@gmx.net",
    "time": "Sun Mar 13 17:36:49 2016 +0000"
  },
  "message": "Fix fscanf format string security bug in layout.c\n\nAn internal security audit of the flashrom project by\nCarl-Daniel Hailfinger found a buffer overflow bug present in all\nflashrom versions since the year 2005.\nThis bug was independently found and reported to flashrom.org by\nCosmin Gorgovan a few days ago. \n\nA buffer on the stack and a buffer on the heap are affected by the\noverflow caused by an incorrect fscanf format string.\nThe buffer overflow can only be triggered if the optional layout feature\nis used and if the user manually specifies a specially crafted layout\nfile on the command line. Command line parsing and flash image handling\ndo not trigger the buggy code path.\nMost usage of flashrom does not involve layout files.\n\nThe fix in this commit (changed fscanf format string) can be applied to\nlayout.c of all past flashrom versions.\n\nCorresponding to flashrom svn r1953.\n\nSigned-off-by: Carl-Daniel Hailfinger \u003cc-d.hailfinger.devel.2006@gmx.net\u003e\nAcked-by: Stefan Tauner \u003cstefan.tauner@alumni.tuwien.ac.at\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "d0394513874f526be88880cfbf69f36e33d12973",
      "old_mode": 33188,
      "old_path": "layout.c",
      "new_id": "f71eeaa8091e591e5225765112a4d7e24a78ccb3",
      "new_mode": 33188,
      "new_path": "layout.c"
    }
  ]
}