diff options
| author |   Alex Legler <a3li@gentoo.org> | 2009-05-29 17:05:38 +0000 |
|---|---|---|
| committer | Alex Legler <a3li@gentoo.org> | 2009-05-29 17:05:38 +0000 |
| commit | 3cc66371c3e4dbabc952d8868bb41323578d065e (patch) | |
| tree | e43e9179fec5ee9476777243653ebb2ca9acf259 /dev-perl/perl-tk/files | |
| parent | amd64 stable (diff) | |
| download | gentoo-2-3cc66371c3e4dbabc952d8868bb41323578d065e.tar.gz gentoo-2-3cc66371c3e4dbabc952d8868bb41323578d065e.tar.bz2 gentoo-2-3cc66371c3e4dbabc952d8868bb41323578d065e.zip | |
Non-maintainer commit: Fix CVE-2008-0553, bug 208464.
(Portage version: 2.2_rc33/cvs/Linux x86_64)
Diffstat (limited to 'dev-perl/perl-tk/files')
| -rw-r--r-- | dev-perl/perl-tk/files/perl-tk-CVE-2008-0553.patch | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/dev-perl/perl-tk/files/perl-tk-CVE-2008-0553.patch b/dev-perl/perl-tk/files/perl-tk-CVE-2008-0553.patch new file mode 100644 index 000000000000..e0436b803fec --- /dev/null +++ b/dev-perl/perl-tk/files/perl-tk-CVE-2008-0553.patch @@ -0,0 +1,17 @@ +Patch for bug 208464 as backported by the Pardus people. + +--- pTk/mTk/generic/tkImgGIF.c.orig 2008-02-05 11:38:58.000000000 +0100 ++++ pTk/mTk/generic/tkImgGIF.c 2008-02-05 11:42:46.000000000 +0100 +@@ -831,6 +831,12 @@ + Tcl_PosixError(interp), (char *) NULL); + return TCL_ERROR; + } ++ ++ if (initialCodeSize > MAX_LWZ_BITS) { ++ Tcl_SetResult(interp, "malformed image", TCL_STATIC); ++ return TCL_ERROR; ++ } ++ + if (transparent != -1) { + cmap[transparent][CM_RED] = 0; + cmap[transparent][CM_GREEN] = 0; |