diff options
| author |   Sebastian Pipping <sping@gentoo.org> | 2012-07-08 22:57:28 +0000 |
|---|---|---|
| committer | Sebastian Pipping <sping@gentoo.org> | 2012-07-08 22:57:28 +0000 |
| commit | 4f74ccd2ec2a92d6ca048c5b0a4ed21f8d427307 (patch) | |
| tree | e6d7c268a5889924de564f790dddbbbd1c5f3707 /media-gfx/gimp/files | |
| parent | marked x86 per bug 425054 (diff) | |
| download | gentoo-2-4f74ccd2ec2a92d6ca048c5b0a4ed21f8d427307.tar.gz gentoo-2-4f74ccd2ec2a92d6ca048c5b0a4ed21f8d427307.tar.bz2 gentoo-2-4f74ccd2ec2a92d6ca048c5b0a4ed21f8d427307.zip | |
media-gfx/gimp: 2.6.12-r2 for CVE-2012-2763
(Portage version: 2.1.10.65/cvs/Linux x86_64)
Diffstat (limited to 'media-gfx/gimp/files')
| -rw-r--r-- | media-gfx/gimp/files/gimp-2.6.12-CVE-2012-2763.patch | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/media-gfx/gimp/files/gimp-2.6.12-CVE-2012-2763.patch b/media-gfx/gimp/files/gimp-2.6.12-CVE-2012-2763.patch new file mode 100644 index 000000000000..c922b6399cc8 --- /dev/null +++ b/media-gfx/gimp/files/gimp-2.6.12-CVE-2012-2763.patch @@ -0,0 +1,20 @@ +Fix for CVE-2012-2763 for GIMP 2.6.x by mancha. Based on commit +76155d79df8d497. Thanks to muks, Kevin, and Ankh for identifying +the relevant code change. + +Ref: Fixed potential buffer overflow in readstr_upto(). + +================================================ + +--- a/plug-ins/script-fu/tinyscheme/scheme.c.orig 2012-06-30 ++++ b/plug-ins/script-fu/tinyscheme/scheme.c 2012-06-30 +@@ -1727,7 +1727,8 @@ static char *readstr_upto(scheme *sc, ch + c = inchar(sc); + len = g_unichar_to_utf8(c, p); + p += len; +- } while (c && !is_one_of(delim, c)); ++ } while ((p - sc->strbuff < sizeof(sc->strbuff)) && ++ (c && !is_one_of(delim, c))); + + if(p==sc->strbuff+2 && c_prev=='\\') + *p = '\0'; |