Buffer overflow / remote code execution possible with this software

[cculianu]

A malicious pool can send a coinbase1 that is > 8192 bytes which will overflow this static buffer:

https://github.com/bitmaintech/bmminer-mix/blob/master/driver-btm-c5.c#L347

When it gets filled here:

bmminer-mix/driver-btm-c5.c

Line 11115 in 7aebcf2

memcpy(last_job_buffer,tmp_buf,buf_len);

A malicious pool can inject arbitrary code onto the stack, taking control of the miner and doing whatever they want with it, including causing it to catch fire.

Please plug this hole.