Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch
diff options
context:
space:
mode:
authorThomas Deutschmann <whissi@gentoo.org>2019-10-26 22:32:18 +0200
committerThomas Deutschmann <whissi@gentoo.org>2019-10-26 22:32:39 +0200
commitf03e8e6318164311ede00819aa2cef46ad83cc4b (patch)
treef8a4be84981746ca05d865a342aa2b3399c225e4 /media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch
parentsys-fs/cryfs: Revert "Add upper bound on boost-1.70" (diff)
downloadgentoo-f03e8e6318164311ede00819aa2cef46ad83cc4b.tar.gz
gentoo-f03e8e6318164311ede00819aa2cef46ad83cc4b.tar.bz2
gentoo-f03e8e6318164311ede00819aa2cef46ad83cc4b.zip
media-libs/libextractor: bump to v1.9
Bug: https://bugs.gentoo.org/695538 Package-Manager: Portage-2.3.78, Repoman-2.3.17 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
Diffstat (limited to 'media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch')
-rw-r--r--media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch15
1 files changed, 15 insertions, 0 deletions
diff --git a/media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch b/media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch
new file mode 100644
index 000000000000..11344d3946af
--- /dev/null
+++ b/media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch
@@ -0,0 +1,15 @@
+Description: fix heap-based buffer over-read.
+Origin: upstream, commit: d2b032452241708bee68d02aa02092cfbfba951a
+Author: Christian Grothoff <christian@grothoff.org>
+
+--- a/src/plugins/dvi_extractor.c
++++ b/src/plugins/dvi_extractor.c
+@@ -182,6 +182,8 @@
+ size = ec->get_size (ec->cls);
+ if (size > 16 * 1024 * 1024)
+ return; /* too large */
++ if (klen + 15 > size)
++ return; /* malformed klen */
+ if (NULL == (data = malloc ((size_t) size)))
+ return; /* out of memory */
+ memcpy (data, buf, iret);