main/gdk-pixbuf: security fixes (CVE-2017-6311, CVE-2017-6312, CVE-2017-6314)

CVE-2017-6313: fix N/A, https://bugzilla.gnome.org/show_bug.cgi?id=779016
author: Leonardo Arena <rnalrd@alpinelinux.org> 2017-06-16 08:24:59 +0000
committer: Leonardo Arena <rnalrd@alpinelinux.org> 2017-06-16 08:27:01 +0000
commit: e316d123f313509137f4eb26ae3ba6b2266a9e93 (patch)
tree: f300ee0c2cdca248d36e323532f81d9c9d966bf6 /main/gdk-pixbuf/CVE-2017-6314.patch
parent: cc6906bf6918602b60bb9b31ae545a8e2ab43e7a (diff)
download: aports-e316d123f313509137f4eb26ae3ba6b2266a9e93.tar.bz2
aports-e316d123f313509137f4eb26ae3ba6b2266a9e93.tar.xz
1 files changed, 16 insertions, 0 deletions
diff --git a/main/gdk-pixbuf/CVE-2017-6314.patch b/main/gdk-pixbuf/CVE-2017-6314.patch
new file mode 100644
index 0000000000..a345fe03fd
--- /dev/null
+++ b/main/gdk-pixbuf/CVE-2017-6314.patch
@@ -0,0 +1,16 @@
+--- gdk-pixbuf-2.30.8/gdk-pixbuf/io-tiff.c	
++++ gdk-pixbuf-2.30.8/gdk-pixbuf/io-tiff.c	
+@@ -458,9 +458,12 @@ make_available_at_least (TiffContext *co
+         need_alloc = context->used + needed;
+         if (need_alloc > context->allocated) {
+                 guint new_size = 1;
+-                while (new_size < need_alloc)
++                while (new_size && (new_size < need_alloc))
+                         new_size *= 2;
+ 
++		if(!(new_size))
++			return FALSE;
++
+                 new_buffer = g_try_realloc (context->buffer, new_size);
+                 if (new_buffer) {
+                         context->buffer = new_buffer;
author	Leonardo Arena <rnalrd@alpinelinux.org>	2017-06-16 08:24:59 +0000
committer	Leonardo Arena <rnalrd@alpinelinux.org>	2017-06-16 08:27:01 +0000
commit	e316d123f313509137f4eb26ae3ba6b2266a9e93 (patch)
tree	f300ee0c2cdca248d36e323532f81d9c9d966bf6 /main/gdk-pixbuf/CVE-2017-6314.patch
parent	cc6906bf6918602b60bb9b31ae545a8e2ab43e7a (diff)
download	aports-e316d123f313509137f4eb26ae3ba6b2266a9e93.tar.bz2 aports-e316d123f313509137f4eb26ae3ba6b2266a9e93.tar.xz