[Frugalware-darcs] frugalware-0.6: gd-2.0.34-2terminus1-i686

voroskoi voroskoi at frugalware.org
Thu Jun 7 11:56:21 CEST 2007


Darcsweb-Url: http://darcs.frugalware.org/darcsweb/darcsweb.cgi?r=frugalware-0.6;a=darcs_commitdiff;h=20070607094814-dd049-594477ebe9ef6df711fbec0c7459122313a07642.gz;

[gd-2.0.34-2terminus1-i686
voroskoi <voroskoi at frugalware.org>**20070607094814
 forgot to add the patch
] {
addfile ./source/lib/gd/CVE-2007-2756.patch
hunk ./source/lib/gd/CVE-2007-2756.patch 1
+Index: gd_png.c
+=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
+RCS file: /repository/gd/libgd/gd_png.c,v
+retrieving revision 1.21.2.1
+diff -u -p -r1.21.2.1 gd_png.c
+--- gd_png.c	1 Apr 2007 20:41:01 -0000	1.21.2.1
++++ gd_png.c	16 May 2007 19:06:11 -0000
+@@ -81,7 +81,11 @@ gdPngErrorHandler (png_structp png_ptr, =

+ static void
+ gdPngReadData (png_structp png_ptr, png_bytep data, png_size_t length)
+ {
+-  gdGetBuf (data, length, (gdIOCtx *) png_get_io_ptr (png_ptr));
++  int check;
++  check =3D gdGetBuf (data, length, (gdIOCtx *) png_get_io_ptr (png_ptr))=
;
++  if (check !=3D length) {
++    png_error(png_ptr, "Read Error: truncated data");
++  }
+ }
+ =

+ static void
}


More information about the Frugalware-darcs mailing list