- CVE-2007-6697 (stolen from Fedora; #430238)

author Szymon Siwek <sls@pld-linux.org>

Fri, 28 Mar 2008 01:58:22 +0000 (01:58 +0000)

committer cvs2git <feedback@pld-linux.org>

Sun, 24 Jun 2012 12:13:13 +0000 (12:13 +0000)
author Szymon Siwek <sls@pld-linux.org>
Fri, 28 Mar 2008 01:58:22 +0000 (01:58 +0000)
committer cvs2git <feedback@pld-linux.org>
Sun, 24 Jun 2012 12:13:13 +0000 (12:13 +0000)
diff --git a/SDL_image-buffer-overflow.patch b/SDL_image-buffer-overflow.patch

new file mode 100644 (file)

index 0000000..0be82dc
--- /dev/null
+++ b/SDL_image-buffer-overflow.patch
@@ -0,0 +1,13 @@
+--- trunk/SDL_image/IMG_gif.c  2007/12/28 08:17:23     3461
++++ trunk/SDL_image/IMG_gif.c  2007/12/28 16:43:56     3462
+@@ -418,6 +418,10 @@
+     static int stack[(1 << (MAX_LWZ_BITS)) * 2], *sp;
+     register int i;
+ 
++    /* Fixed buffer overflow found by Michael Skladnikiewicz */
++    if (input_code_size > MAX_LWZ_BITS)
++        return -1;
++
+     if (flag) {
+       set_code_size = input_code_size;
+       code_size = set_code_size + 1;
author	Szymon Siwek <sls@pld-linux.org>
	Fri, 28 Mar 2008 01:58:22 +0000 (01:58 +0000)
committer	cvs2git <feedback@pld-linux.org>
	Sun, 24 Jun 2012 12:13:13 +0000 (12:13 +0000)