diff options
Diffstat (limited to 'print/cups/patches/patch-filter_image-gif.c')
| -rw-r--r-- | print/cups/patches/patch-filter_image-gif.c | 36 |
1 files changed, 0 insertions, 36 deletions
diff --git a/print/cups/patches/patch-filter_image-gif.c b/print/cups/patches/patch-filter_image-gif.c deleted file mode 100644 index 370e2c2504c..00000000000 --- a/print/cups/patches/patch-filter_image-gif.c +++ /dev/null @@ -1,36 +0,0 @@ -$NetBSD: patch-filter_image-gif.c,v 1.1 2011/08/28 07:22:12 sbd Exp $ - -Use str3914.patch from STR #3914 to fix CVE-2011-3170 - ---- filter/image-gif.c.orig 2011-06-20 20:37:51.000000000 +0000 -+++ filter/image-gif.c -@@ -648,11 +648,13 @@ gif_read_lzw(FILE *fp, /* I - File to - - if (code == max_code) - { -- *sp++ = firstcode; -- code = oldcode; -+ if (sp < (stack + 8192)) -+ *sp++ = firstcode; -+ -+ code = oldcode; - } - -- while (code >= clear_code) -+ while (code >= clear_code && sp < (stack + 8192)) - { - *sp++ = table[1][code]; - if (code == table[0][code]) -@@ -661,8 +663,10 @@ gif_read_lzw(FILE *fp, /* I - File to - code = table[0][code]; - } - -- *sp++ = firstcode = table[1][code]; -- code = max_code; -+ if (sp < (stack + 8192)) -+ *sp++ = firstcode = table[1][code]; -+ -+ code = max_code; - - if (code < 4096) - { |