Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 166712 Details for
Bug 238976
net-print/cups <1.3.8-r2 Multiple buffer overflows (CVE-2008-{3639,3640,3641})
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
cups-1.3.8-CVE-2008-3639.patch
cups-1.3.8-CVE-2008-3639.patch (text/plain), 1.07 KB, created by
Robert Buchholz (RETIRED)
on 2008-09-28 21:11:15 UTC
(
hide
)
Description:
cups-1.3.8-CVE-2008-3639.patch
Filename:
MIME Type:
Creator:
Robert Buchholz (RETIRED)
Created:
2008-09-28 21:11:15 UTC
Size:
1.07 KB
patch
obsolete
>Index: cups-1.3.8/filter/image-sgilib.c >=================================================================== >--- cups-1.3.8.orig/filter/image-sgilib.c >+++ cups-1.3.8/filter/image-sgilib.c >@@ -640,13 +640,14 @@ read_rle8(FILE *fp, /* I - Fi > if (ch & 128) > { > for (i = 0; i < count; i ++, row ++, xsize --, length ++) >- *row = getc(fp); >+ if (xsize > 0) >+ *row = getc(fp); > } > else > { > ch = getc(fp); > length ++; >- for (i = 0; i < count; i ++, row ++, xsize --) >+ for (i = 0; i < count && xsize > 0; i ++, row ++, xsize --) > *row = ch; > } > } >@@ -685,14 +686,15 @@ read_rle16(FILE *fp, /* I - F > if (ch & 128) > { > for (i = 0; i < count; i ++, row ++, xsize --, length ++) >- *row = getshort(fp); >+ if (xsize > 0) >+ *row = getshort(fp); > } > else > { > ch = getshort(fp); > length ++; >- for (i = 0; i < count; i ++, row ++, xsize --) >- *row = ch; >+ for (i = 0; i < count && xsize > 0; i ++, row ++, xsize --) >+ *row = ch; > } > } >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=166712">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 238976
: 166712 |
166713
|
166715
|
167039
