Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 477748 Details for
Bug 611390
<x11-libs/gdk-pixbuf-2.36.9: multiple vulnerabilities
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
CVE-2017-6312.patch
CVE-2017-6312.patch (text/plain), 890 bytes, created by
Andrey Ovcharov
on 2017-06-24 00:00:18 UTC
(
hide
)
Description:
CVE-2017-6312.patch
Filename:
MIME Type:
Creator:
Andrey Ovcharov
Created:
2017-06-24 00:00:18 UTC
Size:
890 bytes
patch
obsolete
>--- a/gdk-pixbuf/io-ico.c >+++ a/gdk-pixbuf/io-ico.c >@@ -330,10 +330,8 @@ static void DecodeHeader(guchar *Data, gint Bytes, > return; > } > >- /* We know how many bytes are in the "header" part. */ >- State->HeaderSize = entry->DIBoffset + INFOHEADER_SIZE; >- >- if (State->HeaderSize < 0) { >+ /* Avoid invoking undefined behavior in the State->HeaderSize calculation below */ >+ if (entry->DIBoffset > G_MAXINT - INFOHEADER_SIZE) { > g_set_error (error, > GDK_PIXBUF_ERROR, > GDK_PIXBUF_ERROR_CORRUPT_IMAGE, >@@ -341,6 +339,9 @@ static void DecodeHeader(guchar *Data, gint Bytes, > return; > } > >+ /* We know how many bytes are in the "header" part. */ >+ State->HeaderSize = entry->DIBoffset + INFOHEADER_SIZE; >+ > if (State->HeaderSize>State->BytesInHeaderBuf) { > guchar *tmp=g_try_realloc(State->HeaderBuf,State->HeaderSize); > if (!tmp) {
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=477748">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 611390
:
477746
| 477748 |
477750
