ports/opt
4
3
Fork 1
Code Issues 1 Pull Requests Activity
c982eba7cd
opt/cairo/cairo-fix-off-by-one-check.patch
Predrag Ivanovic 7abd542e96 cairo: Patch for CVE-2017-7475 and CVE-2016-9082 
Patches added:
- cairo-xlib-endianness.patch -- Fix crash when client and server have different endianness
- cairo-get_bitmap_surface-bsc1036789-CVE-2017-7475.diff -- Fix segfault in get_bitmap_surface
- cairo-fix-off-by-one-check.patch -- Fix off by one check in cairo-image-info.c
- 0001-image-prevent-invalid-ptr-access-for-4GB-images.patch CVE-2016-9082 -- Fix segfault when using >4GB images
2017-07-17 19:53:29 +02:00

24 lines
667 B
Diff
Raw Blame History

From 57b40507dda3f58dfc8635548d606b86dc7bcf51 Mon Sep 17 00:00:00 2001
From: Adrian Johnson <ajohnson@redneon.com>
Date: Thu, 15 Jun 2017 20:53:29 +0930
Subject: Fix off by one check in cairo-image-info.c
https://bugs.freedesktop.org/show_bug.cgi?id=101427
diff --git a/src/cairo-image-info.c b/src/cairo-image-info.c
index 2ecce95..3b4cf6e 100644
--- a/src/cairo-image-info.c
+++ b/src/cairo-image-info.c
@@ -154,7 +154,7 @@ _cairo_image_info_get_jpeg_info (cairo_image_info_t *info,
break;
}
- if (p + 2 > data + length)
+ if (p + 3 > data + length)
return CAIRO_INT_STATUS_UNSUPPORTED;
p = _jpeg_skip_segment (p);
--
cgit v0.10.2
Reference in New Issue View Git Blame Copy Permalink