- Fix security issue

PR: ports/121283 Security: CVE-2008-0411 Submitted by: bf <bf2006a at yahoo.com>
author: Rong-En Fan <rafan@FreeBSD.org> 2008-03-02 12:43:31 +0000
committer: Rong-En Fan <rafan@FreeBSD.org> 2008-03-02 12:43:31 +0000
commit: 71c1212ed1fbff6fc1e7b70166de732ac6fff7c9 (patch)
tree: 1ab791e16d4027fbbb26a22c32594f52babbd7a1 /print/ghostscript-gpl
parent: 3ca626238043b14df1c3a888f9f74c4692750167 (diff)
2 files changed, 13 insertions, 1 deletions
diff --git a/print/ghostscript-gpl/Makefile.inc b/print/ghostscript-gpl/Makefile.inc
index c51a93766c58..4b02a4f47441 100644
--- a/print/ghostscript-gpl/Makefile.inc
+++ b/print/ghostscript-gpl/Makefile.inc
@@ -1,5 +1,5 @@
 # $FreeBSD$
 
 GS_VERSION=	8.61
-GS_REVISION=	1
+GS_REVISION=	2
 GS_EPOCH=	0
diff --git a/print/ghostscript-gpl/files/patch-src__zicc.c b/print/ghostscript-gpl/files/patch-src__zicc.c
new file mode 100644
index 000000000000..a5ddf3a4ff0d
--- /dev/null
+++ b/print/ghostscript-gpl/files/patch-src__zicc.c
@@ -0,0 +1,12 @@
+--- src/zicc.c
++++ src/zicc.c	2008-02-05 16:11:59.000000000 +0000
+@@ -77,6 +77,9 @@ zseticcspace(i_ctx_t * i_ctx_p)
+     dict_find_string(op, "N", &pnval);
+     ncomps = pnval->value.intval;
+ 
++    if (2*ncomps > sizeof(range_buff)/sizeof(float))
++	return_error(e_rangecheck);
++
+     /* verify the DataSource entry */
+     if (dict_find_string(op, "DataSource", &pstrmval) <= 0)
+         return_error(e_undefined);
author	Rong-En Fan <rafan@FreeBSD.org>	2008-03-02 12:43:31 +0000
committer	Rong-En Fan <rafan@FreeBSD.org>	2008-03-02 12:43:31 +0000
commit	71c1212ed1fbff6fc1e7b70166de732ac6fff7c9 (patch)
tree	1ab791e16d4027fbbb26a22c32594f52babbd7a1 /print/ghostscript-gpl
parent	3ca626238043b14df1c3a888f9f74c4692750167 (diff)