sync/ports
1
0
Fork 0
mirror of https://git.freebsd.org/ports.git synced 2025-07-18 09:49:18 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Security fix for gd remote buffer overflow vulnerability.

Browse source 
PR:		ports/147163
Submitted by:	Michael Ranner <michael@ranner.eu>
This commit is contained in:
Alex Dupre 2010-06-14 14:43:44 +00:00
parent 7012ce9f37
commit 542b78d08d
Notes: svn2git 2021-03-31 03:12:20 +00:00 
svn path=/head/; revision=256526
2 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
graphics/php4-gd/Makefile
View file

@ -5,6 +5,7 @@
# $FreeBSD$ # $FreeBSD$
# #
PORTREVISION= 4
CATEGORIES= graphics CATEGORIES= graphics
MASTERDIR= ${.CURDIR}/../../lang/php4 MASTERDIR= ${.CURDIR}/../../lang/php4

12
graphics/php4-gd/files/patch-libgd_gd_gd.c Normal file
View file

@ -0,0 +1,12 @@
--- libgd/gd_gd.c.orig 2010-03-26 14:26:22.000000000 +0100
+++ libgd/gd_gd.c 2010-03-26 14:28:03.000000000 +0100
@@ -40,6 +40,9 @@
if (!gdGetWord(&im->colorsTotal, in)) {
goto fail1;
}
+ if (im->colorsTotal > gdMaxColors) {
+ goto fail1;
+ }
}
/* Int to accommodate truecolor single-color transparency */
if (!gdGetInt(&im->transparent, in)) {