lcms2: add patch for CVE-2016-10165

2017-01-29 21:58:50 +01:00 · 2017-01-29 21:58:50 +01:00 · 902997e3ed
commit 902997e3ed
parent 3f6335807e
2 changed files with 23 additions and 1 deletions
--- a/srcpkgs/lcms2/patches/CVE-2016-10165.patch
+++ b/srcpkgs/lcms2/patches/CVE-2016-10165.patch
@ -0,0 +1,22 @@
+From 5ca71a7bc18b6897ab21d815d15e218e204581e2 Mon Sep 17 00:00:00 2001
+From: Marti <marti.maria@tktbrainpower.com>
+Date: Mon, 15 Aug 2016 23:31:39 +0200
+Subject: [PATCH] Added an extra check to MLU bounds
+
+Thanks to Ibrahim el-sayed for spotting the bug
+---
+ src/cmstypes.c | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/src/cmstypes.c b/src/cmstypes.c
+index cb61860..c7328b9 100644
+--- src/cmstypes.c
+++ src/cmstypes.c
+@@ -1460,6 +1460,7 @@ void *Type_MLU_Read(struct _cms_typehandler_struct* self, cmsIOHANDLER* io, cmsU
+ 
+         // Check for overflow
+         if (Offset < (SizeOfHeader + 8)) goto Error;
+        if ((Offset + Len) > SizeOfTag + 8) goto Error;
+ 
+         // True begin of the string
+         BeginOfThisString = Offset - SizeOfHeader - 8;
--- a/srcpkgs/lcms2/template
+++ b/srcpkgs/lcms2/template
@ -1,7 +1,7 @@
 # Template build file for 'lcms2'.
 pkgname=lcms2
 version=2.8
-revision=1
+revision=2
 build_style=gnu-configure
 makedepends="tiff-devel"
 short_desc="Small-footprint color management engine, version 2"