diff options
| author | Francesco Colista <fcolista@alpinelinux.org> | 2017-10-03 08:12:26 +0000 |
|---|---|---|
| committer | Francesco Colista <fcolista@alpinelinux.org> | 2017-10-03 08:12:26 +0000 |
| commit | a3156514cd10b8ec568649e64eb4f1ceb2879c39 (patch) | |
| tree | e9a9cdfd92f65b4cfda0e44616b0653a3fa32fb2 /community/graphicsmagick/CVE-2017-13648.patch | |
| parent | 7f29820b2245b38b761bebe248ccc12e474ef6cb (diff) | |
| download | aports-a3156514cd10b8ec568649e64eb4f1ceb2879c39.tar.bz2 aports-a3156514cd10b8ec568649e64eb4f1ceb2879c39.tar.xz | |
community/graphicsmagick: security fixes (CVE-2017-13065, CVE-2017-13648, CVE-2017-14042, CVE-2017-14103, CVE-2017-14165)
Diffstat (limited to 'community/graphicsmagick/CVE-2017-13648.patch')
| -rw-r--r-- | community/graphicsmagick/CVE-2017-13648.patch | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/community/graphicsmagick/CVE-2017-13648.patch b/community/graphicsmagick/CVE-2017-13648.patch new file mode 100644 index 0000000000..f27c313ce1 --- /dev/null +++ b/community/graphicsmagick/CVE-2017-13648.patch @@ -0,0 +1,23 @@ + +# HG changeset patch +# User Bob Friesenhahn <bfriesen@GraphicsMagick.org> +# Date 1505397055 18000 +# Node ID a0e598438aa970f237fa9b35edce0728cc144f29 +# Parent cadd4b0522fa8b6b6e8ea6a5a9b4a5baebc1b011 +MAT: Fix under-sized allocation leading to heap overflow. + +diff -r cadd4b0522fa -r a0e598438aa9 coders/mat.c +--- a/coders/mat.c Wed Sep 13 10:28:42 2017 -0400 ++++ b/coders/mat.c Thu Sep 14 08:50:55 2017 -0500 +@@ -1050,9 +1050,10 @@ + } + + /* ----- Load raster data ----- */ +- BImgBuff = MagickAllocateMemory(unsigned char *,(size_t) (ldblk)); /* Ldblk was set in the check phase */ ++ BImgBuff = MagickAllocateArray(unsigned char *,(size_t) (ldblk),sizeof(double)); /* Ldblk was set in the check phase */ + if (BImgBuff == NULL) + goto NoMemory; ++ (void) memset(BImgBuff,0,ldblk*sizeof(double)); + + if (CellType==miDOUBLE) /* Find Min and Max Values for floats */ + { |