Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 138526 Details for
Bug 202350
media-libs/libexif < 0.6.16-r1 Multiple vulnerabilities (CVE-2007-{6351,6352})
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
libexif-CVE-2007-6352.patch
libexif-CVE-2007-6352.patch (text/plain), 691 bytes, created by
Robert Buchholz (RETIRED)
on 2007-12-15 00:23:25 UTC
(
hide
)
Description:
libexif-CVE-2007-6352.patch
Filename:
MIME Type:
Creator:
Robert Buchholz (RETIRED)
Created:
2007-12-15 00:23:25 UTC
Size:
691 bytes
patch
obsolete
>Index: libexif-0.6.16/libexif/exif-data.c >=================================================================== >--- libexif-0.6.16.orig/libexif/exif-data.c >+++ libexif-0.6.16/libexif/exif-data.c >@@ -288,10 +288,9 @@ static void > exif_data_load_data_thumbnail (ExifData *data, const unsigned char *d, > unsigned int ds, ExifLong offset, ExifLong size) > { >- if (ds < offset + size) { >+ if ((ds < offset + size) || (offset < 0) || (offset > ds)) { > exif_log (data->priv->log, EXIF_LOG_CODE_DEBUG, "ExifData", >- "Bogus thumbnail offset and size: %i < %i + %i.", >- (int) ds, (int) offset, (int) size); >+ "Bogus thumbnail offset and size."); > return; > } > if (data->data)
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=138526">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 202350
:
138525
| 138526
