- Security patch

Security: CVE-2009-3546
Security: http://portaudit.freebsd.org/4e8344a3-ca52-11de-8ee8-00215c6a37bb.html
PR:		140335
Submitted by:	Eygene Ryabinkin
Obtained from:	PHP project
This commit is contained in:
Dirk Meyer 2009-11-06 21:37:16 +00:00
parent 4c33f16d41
commit ce15673209
Notes: svn2git 2021-03-31 03:12:20 +00:00
svn path=/head/; revision=243907
2 changed files with 16 additions and 1 deletions

View file

@ -7,7 +7,7 @@
PORTNAME= gd
PORTVERSION= 2.0.35
PORTREVISION?= 1
PORTREVISION?= 2
PORTEPOCH= 1
CATEGORIES+= graphics
MASTER_SITES= http://www.libgd.org/releases/

View file

@ -0,0 +1,15 @@
Adopted-From: http://svn.php.net/viewvc/php/php-src/branches/PHP_5_2/ext/gd/libgd/gd_gd.c?r1=289557&r2=289556&pathrev=289557&view=patch
--- gd_gd.c.orig 2006-04-05 19:52:22.000000000 +0400
+++ gd_gd.c 2009-11-06 18:06:50.000000000 +0300
@@ -44,6 +44,10 @@
{
goto fail1;
}
+ if (im->colorsTotal > gdMaxColors)
+ {
+ goto fail1;
+ }
}
/* Int to accommodate truecolor single-color transparency */
if (!gdGetInt (&im->transparent, in))