diff options
author | Patrick J Volkerding <volkerdi@slackware.com> | 2018-11-13 05:15:29 +0000 |
---|---|---|
committer | Eric Hameleers <alien@slackware.com> | 2018-11-13 17:59:46 +0100 |
commit | 2520b90f18ab408818b967f77ef38c1be85de634 (patch) | |
tree | c07e9cf84c06eb9e4a8981d21cfc66fab58416d5 /source/l/netpbm/netpbm-CVE-2017-2587.patch | |
parent | cb1323a95c7d3275677760efd96a3eb9824c8aa8 (diff) | |
download | current-2520b90f18ab408818b967f77ef38c1be85de634.tar.gz current-2520b90f18ab408818b967f77ef38c1be85de634.tar.xz |
Tue Nov 13 05:15:29 UTC 201820181113051529
d/python-setuptools-40.6.1-x86_64-1.txz: Upgraded.
l/M2Crypto-0.31.0-x86_64-1.txz: Upgraded.
l/SDL2-2.0.9-x86_64-2.txz: Rebuilt.
Fixed use of SDL_syswm.h with SDL_PROTOTYPES_ONLY in C++ mode.
Thanks to orbea.
l/libtiff-4.0.10-x86_64-1.txz: Upgraded.
This update fixes some denial of service security issues.
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8905
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10779
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10963
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661
(* Security fix *)
l/netpbm-10.84.02-x86_64-1.txz: Upgraded.
n/net-snmp-5.8-x86_64-2.txz: Rebuilt.
Recompiled to link the perl modules to the new libraries. Thanks to th_r.
Diffstat (limited to 'source/l/netpbm/netpbm-CVE-2017-2587.patch')
-rw-r--r-- | source/l/netpbm/netpbm-CVE-2017-2587.patch | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/source/l/netpbm/netpbm-CVE-2017-2587.patch b/source/l/netpbm/netpbm-CVE-2017-2587.patch new file mode 100644 index 000000000..7e3bad7bb --- /dev/null +++ b/source/l/netpbm/netpbm-CVE-2017-2587.patch @@ -0,0 +1,26 @@ +diff -urNp old/converter/other/svgtopam.c new/converter/other/svgtopam.c +--- old/converter/other/svgtopam.c 2017-02-08 12:11:02.593690917 +0100 ++++ new/converter/other/svgtopam.c 2017-02-08 13:49:38.319029371 +0100 +@@ -771,12 +771,17 @@ createCanvas(unsigned int const width, + + MALLOCVAR_NOFAIL(canvasP); + +- canvasP->width = width; +- canvasP->height = height; +- canvasP->pixels = ppm_allocarray(width, height); +- canvasP->maxval = maxval; ++ if(canvasP != NULL){ ++ canvasP->width = width; ++ canvasP->height = height; ++ canvasP->pixels = ppm_allocarray(width, height); ++ canvasP->maxval = maxval; ++ ++ *canvasPP = canvasP; ++ } else { ++ pm_error("can't allocate memory for canvas"); ++ } + +- *canvasPP = canvasP; + } + + |