main/tiff: security patches

author: Natanael Copa <ncopa@alpinelinux.org> 2009-08-20 13:30:59 +0000
committer: Natanael Copa <ncopa@alpinelinux.org> 2009-08-20 13:30:59 +0000
commit: bb3724aa4701bc30a93b8323a71ac578789cb784 (patch)
tree: 74be00b9d5f036b1e03497bfd8ebba6f2b210fa9 /main/tiff/tiffsplit-fname-overflow.patch
parent: f0404cc32bc2fee17dcc6c0badd7d42a9ba253ea (diff)
download: aports-bb3724aa4701bc30a93b8323a71ac578789cb784.tar.bz2
aports-bb3724aa4701bc30a93b8323a71ac578789cb784.tar.xz
1 files changed, 19 insertions, 0 deletions
diff --git a/main/tiff/tiffsplit-fname-overflow.patch b/main/tiff/tiffsplit-fname-overflow.patch
new file mode 100644
index 00000000..cc225890
--- /dev/null
+++ b/main/tiff/tiffsplit-fname-overflow.patch
@@ -0,0 +1,19 @@
+--- tiff-3.8.2/tools/tiffsplit.c.orig	2005-12-07 04:48:33.000000000 -0500
++++ tiff-3.8.2/tools/tiffsplit.c	2006-06-01 21:20:25.039944864 -0400
+@@ -61,14 +61,13 @@
+ 		return (-3);
+ 	}
+ 	if (argc > 2)
+-		strcpy(fname, argv[2]);
++		snprintf(fname, sizeof(fname), "%s", argv[2]);
+ 	in = TIFFOpen(argv[1], "r");
+ 	if (in != NULL) {
+ 		do {
+ 			char path[1024+1];
+ 			newfilename();
+-			strcpy(path, fname);
+-			strcat(path, ".tif");
++			snprintf(path, sizeof(path), "%s.tif", fname);
+ 			out = TIFFOpen(path, TIFFIsBigEndian(in)?"wb":"wl");
+ 			if (out == NULL)
+ 				return (-2);
author	Natanael Copa <ncopa@alpinelinux.org>	2009-08-20 13:30:59 +0000
committer	Natanael Copa <ncopa@alpinelinux.org>	2009-08-20 13:30:59 +0000
commit	bb3724aa4701bc30a93b8323a71ac578789cb784 (patch)
tree	74be00b9d5f036b1e03497bfd8ebba6f2b210fa9 /main/tiff/tiffsplit-fname-overflow.patch
parent	f0404cc32bc2fee17dcc6c0badd7d42a9ba253ea (diff)
download	aports-bb3724aa4701bc30a93b8323a71ac578789cb784.tar.bz2 aports-bb3724aa4701bc30a93b8323a71ac578789cb784.tar.xz