Skip to content
GitLab
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in
Toggle navigation
Menu
Open sidebar
Steve Lhomme
VLC
Commits
1fd47f50
Commit
1fd47f50
authored
Feb 01, 2008
by
Konstantin Pavlov
Browse files
Fix CVE 2006-4484. Should be backported.
parent
ae26ef1d
Changes
2
Hide whitespace changes
Inline
Side-by-side
extras/contrib/src/Makefile
View file @
1fd47f50
...
...
@@ -2012,6 +2012,7 @@ SDL_image-$(SDL_IMAGE_VERSION).tar.gz:
SDL_image
:
SDL_image-$(SDL_IMAGE_VERSION).tar.gz
$(EXTRACT_GZ)
patch
-p0
< Patches/SDL_image.patch
patch
-p0
< Patches/SDL_image-CVE-2006-4484.patch
.SDL_image
:
SDL_image .SDL .png .jpeg .tiff
(
cd
$<
;
$(HOSTCC)
./configure
$(HOSTCONF)
--prefix
=
$(PREFIX)
CFLAGS
=
"
$(CFLAGS)
"
--enable-tif
--disable-sdltest
&&
make
&&
make
install
)
...
...
extras/contrib/src/Patches/SDL_image-CVE-2006-4484.patch
0 → 100644
View file @
1fd47f50
Common subdirectories: sdl-image1.2-1.2.5/debian and sdl-image1.2-1.2.5-fixed/debian
diff -up sdl-image1.2-1.2.5/IMG_gif.c sdl-image1.2-1.2.5-fixed/IMG_gif.c
--- sdl-image1.2-1.2.5/IMG_gif.c 2008-01-30 19:49:29.000000000 -0500
+++ sdl-image1.2-1.2.5-fixed/IMG_gif.c 2008-01-30 19:52:56.000000000 -0500
@@ -418,6 +418,10 @@
LWZReadByte(SDL_RWops *src, int flag, in
static int stack[(1 << (MAX_LWZ_BITS)) * 2], *sp;
register int i;
+ /* Fixed buffer overflow found by Michael Skladnikiewicz */
+ if (input_code_size > MAX_LWZ_BITS)
+ return -1;
+
if (flag) {
set_code_size = input_code_size;
code_size = set_code_size + 1;
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment