summaryrefslogtreecommitdiff
path: root/textproc/libyaml/patches/patch-CVE-2014-2525_1
diff options
context:
space:
mode:
Diffstat (limited to 'textproc/libyaml/patches/patch-CVE-2014-2525_1')
-rw-r--r--textproc/libyaml/patches/patch-CVE-2014-2525_116
1 files changed, 16 insertions, 0 deletions
diff --git a/textproc/libyaml/patches/patch-CVE-2014-2525_1 b/textproc/libyaml/patches/patch-CVE-2014-2525_1
new file mode 100644
index 00000000000..da02bccb941
--- /dev/null
+++ b/textproc/libyaml/patches/patch-CVE-2014-2525_1
@@ -0,0 +1,16 @@
+$NetBSD: patch-CVE-2014-2525_1,v 1.1 2014/03/28 16:02:01 drochner Exp $
+
+https://bitbucket.org/xi/libyaml/commits/bce8b60f0b9af69fa9fab3093d0a41ba243de048
+
+--- src/scanner.c.orig 2014-03-28 15:47:54.000000000 +0000
++++ src/scanner.c
+@@ -2629,6 +2629,9 @@ yaml_parser_scan_tag_uri(yaml_parser_t *
+ /* Check if it is a URI-escape sequence. */
+
+ if (CHECK(parser->buffer, '%')) {
++ if (!STRING_EXTEND(parser, string))
++ goto error;
++
+ if (!yaml_parser_scan_uri_escapes(parser,
+ directive, start_mark, &string)) goto error;
+ }
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-15 01:41:41 +0000