diff options
| author | Danilo G. Baio <dbaio@FreeBSD.org> | 2020-02-15 16:28:41 +0000 |
|---|---|---|
| committer | Danilo G. Baio <dbaio@FreeBSD.org> | 2020-02-15 16:28:41 +0000 |
| commit | 2b059e7583812b6e0aeb4eacb39bc25a0cfd94e3 (patch) | |
| tree | b48fef79d5c498898e6a85a5c2b8d0cac21dd2e6 /graphics/libexif/files/patch-chromium-8884 | |
| parent | a6b5a5cab5f4342aaf7a220ca596944791dd5d5d (diff) | |
| download | ports-2b059e7583812b6e0aeb4eacb39bc25a0cfd94e3.tar.gz ports-2b059e7583812b6e0aeb4eacb39bc25a0cfd94e3.zip | |
Notes
Diffstat (limited to 'graphics/libexif/files/patch-chromium-8884')
| -rw-r--r-- | graphics/libexif/files/patch-chromium-8884 | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/graphics/libexif/files/patch-chromium-8884 b/graphics/libexif/files/patch-chromium-8884 new file mode 100644 index 000000000000..55673b941971 --- /dev/null +++ b/graphics/libexif/files/patch-chromium-8884 @@ -0,0 +1,24 @@ +https://github.com/libexif/libexif/commit/a0c04d9cb6ab0c41a6458def9f892754e84160a0.patch +From a0c04d9cb6ab0c41a6458def9f892754e84160a0 Mon Sep 17 00:00:00 2001 +From: Marcus Meissner <marcus@jet.franken.de> +Date: Sat, 15 Jun 2019 18:40:48 +0200 +Subject: [PATCH] fixed a buffer overread (OSS-Fuzz) + https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8884 + +--- + libexif/olympus/exif-mnote-data-olympus.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git libexif/olympus/exif-mnote-data-olympus.c libexif/olympus/exif-mnote-data-olympus.c +index dac7f5b..669e4ec 100644 +--- libexif/olympus/exif-mnote-data-olympus.c ++++ libexif/olympus/exif-mnote-data-olympus.c +@@ -344,7 +344,7 @@ exif_mnote_data_olympus_load (ExifMnoteData *en, + + case nikonV2: + o2 += 6; +- if (o2 >= buf_size) return; ++ if (o2 + 8 >= buf_size) return; + exif_log (en->log, EXIF_LOG_CODE_DEBUG, "ExifMnoteDataOlympus", + "Parsing Nikon maker note v2 (0x%02x, %02x, %02x, " + "%02x, %02x, %02x, %02x, %02x)...", |