SecBSD/ports
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

SecBSD's official ports repository

Browse source
This commit is contained in:
purplerain 2023-08-16 22:26:55 +00:00
commit 2c0afcbbf3
Signed by: purplerain
GPG key ID: F42C07F07E2E35B7
64331 changed files with 5339189 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

26
graphics/libwmf/patches/patch-src_player_c Normal file
View file

@ -0,0 +1,26 @@
Security fix for CVE-2006-3376. Diff from Ubuntu. (fixed by naddy@)
--- src/player.c.orig Tue Dec 10 19:30:26 2002
+++ src/player.c Tue Mar 17 00:12:11 2015
@@ -22,6 +22,7 @@
#endif
#include <stdio.h>
+#include <stdint.h>
#include <stdlib.h>
#include <string.h>
#include <math.h>
@@ -130,6 +131,13 @@ wmf_error_t wmf_scan (wmfAPI* API,unsigned long flags,
{ WMF_DEBUG (API,"bailing...");
return (API->err);
}
+ }
+
+ if (MAX_REC_SIZE(API) > SIZE_MAX / 2)
+ {
+ API->err = wmf_E_InsMem;
+ WMF_DEBUG (API,"bailing...");
+ return (API->err);
}
/* P->Parameters = (unsigned char*) wmf_malloc (API,(MAX_REC_SIZE(API)-3) * 2 * sizeof (unsigned char));