diff options
| author |   Patrick J Volkerding <volkerdi@slackware.com> | 2020-11-27 20:40:32 +0000 |
|---|---|---|
| committer |   Eric Hameleers <alien@slackware.com> | 2020-11-28 08:59:50 +0100 |
| commit | f7c461c24b8544648a3ed3f6a9d92ef51e50af43 (patch) | |
| tree | 0bf9d98cfeade9719877f6bf54c3229691bc5338 /source/l/libwmf/libwmf-0.2.8.4-CVE-2016-9011.patch | |
| parent | dbf5c1c4390d04802e7b37be3d2012bb8eae6675 (diff) | |
| download | current-f7c461c24b8544648a3ed3f6a9d92ef51e50af43.tar.gz current-f7c461c24b8544648a3ed3f6a9d92ef51e50af43.tar.xz | |
Fri Nov 27 20:40:32 UTC 202020201127204032
a/dialog-1.3_20201126-x86_64-1.txz: Upgraded.
l/adwaita-icon-theme-3.38.0-noarch-1.txz: Upgraded.
l/gsettings-desktop-schemas-3.38.0-x86_64-1.txz: Upgraded.
l/gtk+3-3.24.23-x86_64-2.txz: Rebuilt.
Applied upstream patch to fix middle click pasting between GTK+ and KDE apps
on Wayland. Thanks to Heinz Wiesinger.
l/gtksourceview3-3.24.11-x86_64-2.txz: Rebuilt.
Get rid of stray .la file.
l/libwmf-0.2.12-x86_64-1.txz: Upgraded.
l/utf8proc-2.6.0-x86_64-1.txz: Upgraded.
n/fetchmail-6.4.14-x86_64-1.txz: Upgraded.
n/php-7.4.13-x86_64-1.txz: Upgraded.
x/libinput-1.16.4-x86_64-1.txz: Upgraded.
Diffstat (limited to 'source/l/libwmf/libwmf-0.2.8.4-CVE-2016-9011.patch')
| -rw-r--r-- | source/l/libwmf/libwmf-0.2.8.4-CVE-2016-9011.patch | 36 |
1 files changed, 0 insertions, 36 deletions
diff --git a/source/l/libwmf/libwmf-0.2.8.4-CVE-2016-9011.patch b/source/l/libwmf/libwmf-0.2.8.4-CVE-2016-9011.patch deleted file mode 100644 index c6bd017c2..000000000 --- a/source/l/libwmf/libwmf-0.2.8.4-CVE-2016-9011.patch +++ /dev/null @@ -1,36 +0,0 @@ ---- libwmf-0.2.8.4/src/player.c -+++ libwmf-0.2.8.4/src/player.c -@@ -139,8 +139,31 @@ - WMF_DEBUG (API,"bailing..."); - return (API->err); - } -- -- P->Parameters = (unsigned char*) wmf_malloc (API,(MAX_REC_SIZE(API) ) * 2 * sizeof (unsigned char)); -+ -+ U32 nMaxRecordSize = (MAX_REC_SIZE(API) ) * 2 * sizeof (unsigned char); -+ if (nMaxRecordSize) -+ { -+ //before allocating memory do a sanity check on size by seeking -+ //to claimed end to see if its possible. We're constrained here -+ //by the api and existing implementations to not simply seeking -+ //to SEEK_END. So use what we have to skip to the last byte and -+ //try and read it. -+ const long nPos = WMF_TELL (API); -+ WMF_SEEK (API, nPos + nMaxRecordSize - 1); -+ if (ERR (API)) -+ { WMF_DEBUG (API,"bailing..."); -+ return (API->err); -+ } -+ int byte = WMF_READ (API); -+ if (byte == (-1)) -+ { WMF_ERROR (API,"Unexpected EOF!"); -+ API->err = wmf_E_EOF; -+ return (API->err); -+ } -+ WMF_SEEK (API, nPos); -+ } -+ -+ P->Parameters = (unsigned char*) wmf_malloc (API, nMaxRecordSize); - - if (ERR (API)) - { WMF_DEBUG (API,"bailing..."); |