forked from gentoo/gentoo
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Package-Manager: Portage-2.3.16, Repoman-2.3.6
- Loading branch information
Showing
2 changed files
with
81 additions
and
0 deletions.
There are no files selected for viewing
22 changes: 22 additions & 0 deletions
22
media-gfx/optipng/files/optipng-0.7.6-cve-2017-16938.patch
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,22 @@ | ||
| From e05fb81a20541833a2d62ce08552b18c0920b9a1 Mon Sep 17 00:00:00 2001 | ||
| From: Cosmin Truta <[email protected]> | ||
| Date: Sat, 25 Nov 2017 23:17:46 -0500 | ||
| Subject: [PATCH] gifread: Detect indirect circular dependencies in LZW tables | ||
|
|
||
| --- | ||
| src/gifread/gifread.c | 2 ++ | ||
| 1 file changed, 2 insertions(+) | ||
|
|
||
| diff --git a/src/gifread/gifread.c b/src/gifread/gifread.c | ||
| index 0123456789abcdef..0123456789abcdef 100644 | ||
| --- a/src/gifread/gifread.c | ||
| +++ b/src/gifread/gifread.c | ||
| @@ -499,6 +499,8 @@ static int LZWReadByte(int init_flag, int input_code_size, FILE *stream) | ||
| *sp++ = table[1][code]; | ||
| if (code == table[0][code]) | ||
| GIFError("GIF/LZW error: circular table entry"); | ||
| + if ((size_t)(sp - stack) >= sizeof(stack) / sizeof(stack[0])) | ||
| + GIFError("GIF/LZW error: circular table"); | ||
| code = table[0][code]; | ||
| } | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,59 @@ | ||
| # Copyright 1999-2017 Gentoo Foundation | ||
| # Distributed under the terms of the GNU General Public License v2 | ||
|
|
||
| EAPI=6 | ||
|
|
||
| inherit eutils toolchain-funcs | ||
|
|
||
| DESCRIPTION="Compress PNG files without affecting image quality" | ||
| HOMEPAGE="http://optipng.sourceforge.net/" | ||
| SRC_URI="mirror://sourceforge/${PN}/${P}.tar.gz" | ||
|
|
||
| LICENSE="ZLIB" | ||
| SLOT="0" | ||
| KEYWORDS="~alpha ~amd64 ~arm ~ppc ~ppc64 ~x86 ~amd64-linux ~x86-linux ~ppc-macos ~x86-macos ~x86-solaris" | ||
| IUSE="" | ||
|
|
||
| RDEPEND="sys-libs/zlib | ||
| media-libs/libpng:0" | ||
| DEPEND="${RDEPEND} | ||
| sys-apps/findutils" | ||
|
|
||
| src_prepare() { | ||
| epatch "${FILESDIR}"/${PN}-0.7.5-estonian.patch | ||
| epatch "${FILESDIR}"/${PN}-0.7.6-cve-2017-1000229.patch # bug 637936 | ||
| epatch "${FILESDIR}"/${PN}-0.7.6-cve-2017-16938.patch # bug 639690 | ||
|
|
||
| rm -R src/{libpng,zlib} || die | ||
| find . -type d -name build -exec rm -R {} + || die | ||
|
|
||
| # next release is almost a complete rewrite, so plug this compilation | ||
| # problem in anticipation of the much (c)leaner(?) rewrite | ||
| sed -i \ | ||
| -e 's/^#ifdef AT_FDCWD/#if defined(AT_FDCWD) \&\& !(defined (__SVR4) \&\& defined (__sun))/' \ | ||
| src/optipng/osys.c || die | ||
|
|
||
| tc-export CC AR RANLIB | ||
| export LD=$(tc-getCC) | ||
|
|
||
| eapply_user | ||
| } | ||
|
|
||
| src_configure() { | ||
| ./configure \ | ||
| -with-system-libpng \ | ||
| -with-system-zlib \ | ||
| || die "configure failed" | ||
| } | ||
|
|
||
| src_compile() { | ||
| emake -C src/optipng | ||
| } | ||
|
|
||
| src_install() { | ||
| dodoc README.txt doc/*.txt | ||
| dohtml doc/*.html | ||
| doman src/${PN}/man/${PN}.1 | ||
|
|
||
| dobin src/${PN}/${PN} | ||
| } |