diff options
author | Leonardo Arena <rnalrd@alpinelinux.org> | 2019-09-24 14:09:13 +0000 |
---|---|---|
committer | Leonardo Arena <rnalrd@alpinelinux.org> | 2019-09-24 14:12:39 +0000 |
commit | 40640b4440e2770526a04fbb0eff7c4feb5d7732 (patch) | |
tree | cea41e1c559e880bf25c63c780edfe7e7477c7c0 /main/poppler/CVE-2019-9959.patch | |
parent | ba468f0a8ebb9c1099194f173c88b753939858c1 (diff) | |
download | aports-40640b4440e2770526a04fbb0eff7c4feb5d7732.tar.bz2 aports-40640b4440e2770526a04fbb0eff7c4feb5d7732.tar.xz |
main/poppler: security fix (CVE-2019-9959)
fixes #10811
Diffstat (limited to 'main/poppler/CVE-2019-9959.patch')
-rw-r--r-- | main/poppler/CVE-2019-9959.patch | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/main/poppler/CVE-2019-9959.patch b/main/poppler/CVE-2019-9959.patch new file mode 100644 index 0000000000..d417a698b2 --- /dev/null +++ b/main/poppler/CVE-2019-9959.patch @@ -0,0 +1,13 @@ +diff --git a/poppler/JPEG2000Stream.cc b/poppler/JPEG2000Stream.cc +index 7daa23d..714d814 100644 +--- a/poppler/JPEG2000Stream.cc ++++ b/poppler/JPEG2000Stream.cc +@@ -368,7 +368,7 @@ void JPXStream::init() + if (getDict()) getDict()->lookup("SMaskInData", &smaskInData); + + int bufSize = BUFFER_INITIAL_SIZE; +- if (oLen.isInt()) bufSize = oLen.getInt(); ++ if (oLen.isInt() && oLen.getInt() > 0) bufSize = oLen.getInt(); + oLen.free(); + + if (cspace.isArray() && cspace.arrayGetLength() > 0) { |