Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/media-libs/libextractor/files/libextractor-1.9-CVE-2019-15531.patch
blob: 11344d3946af0aa424f352b9c4a2d83d6bcaf791 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15

Description: fix heap-based buffer over-read.
Origin: upstream, commit: d2b032452241708bee68d02aa02092cfbfba951a
Author: Christian Grothoff <christian@grothoff.org>

--- a/src/plugins/dvi_extractor.c
+++ b/src/plugins/dvi_extractor.c
@@ -182,6 +182,8 @@
   size = ec->get_size (ec->cls);
   if (size > 16 * 1024 * 1024)
     return; /* too large */
+  if (klen + 15 > size)
+    return; /* malformed klen */
   if (NULL == (data = malloc ((size_t) size)))
     return; /* out of memory */
   memcpy (data, buf, iret);