diff options
| author | Xin LI <delphij@FreeBSD.org> | 2009-11-09 17:14:27 +0000 |
|---|---|---|
| committer | Xin LI <delphij@FreeBSD.org> | 2009-11-09 17:14:27 +0000 |
| commit | a4895e4439e472af2056f1018facfa9e40e13567 (patch) | |
| tree | 4d2dcf5ff3e68dea777db691126b07037e1ff76c /graphics | |
| parent | f1c50c2bcea21da2d3bf493db089b546a74b3c84 (diff) | |
Notes
Diffstat (limited to 'graphics')
| -rw-r--r-- | graphics/php5-gd/Makefile | 1 | ||||
| -rw-r--r-- | graphics/php5-gd/files/patch-CVE-2009-3546 | 12 |
2 files changed, 13 insertions, 0 deletions
diff --git a/graphics/php5-gd/Makefile b/graphics/php5-gd/Makefile index 6ed41946bb21..2a8bcdd5e908 100644 --- a/graphics/php5-gd/Makefile +++ b/graphics/php5-gd/Makefile @@ -6,6 +6,7 @@ # CATEGORIES= graphics +PORTREVISION= 2 MASTERDIR= ${.CURDIR}/../../lang/php5 diff --git a/graphics/php5-gd/files/patch-CVE-2009-3546 b/graphics/php5-gd/files/patch-CVE-2009-3546 new file mode 100644 index 000000000000..2010c6829504 --- /dev/null +++ b/graphics/php5-gd/files/patch-CVE-2009-3546 @@ -0,0 +1,12 @@ +--- ./libgd/gd_gd.c.orig 2007-08-09 07:21:38.000000000 -0700 ++++ ./libgd/gd_gd.c 2009-11-08 23:13:19.144908056 -0800 +@@ -39,6 +39,9 @@ + if (!gdGetWord(&im->colorsTotal, in)) { + goto fail1; + } ++ if (im->colorsTotal > gdMaxColors) { ++ goto fail1; ++ } + } + /* Int to accommodate truecolor single-color transparency */ + if (!gdGetInt(&im->transparent, in)) { |