Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
V
vlc-gpu
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Redmine
Redmine
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Operations
Operations
Metrics
Environments
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
videolan
vlc-gpu
Commits
afdf4746
Commit
afdf4746
authored
Feb 01, 2008
by
Felix Paul Kühne
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
SDL_image: fixed patch submitted in [24741], so it does merge correctly
parent
26714f22
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
7 additions
and
9 deletions
+7
-9
extras/contrib/src/Patches/SDL_image-CVE-2006-4484.patch
extras/contrib/src/Patches/SDL_image-CVE-2006-4484.patch
+7
-9
No files found.
extras/contrib/src/Patches/SDL_image-CVE-2006-4484.patch
View file @
afdf4746
Common subdirectories: sdl-image1.2-1.2.5/debian and sdl-image1.2-1.2.5-fixed/debian
diff -up sdl-image1.2-1.2.5/IMG_gif.c sdl-image1.2-1.2.5-fixed/IMG_gif.c
--- sdl-image1.2-1.2.5/IMG_gif.c 2008-01-30 19:49:29.000000000 -0500
+++ sdl-image1.2-1.2.5-fixed/IMG_gif.c 2008-01-30 19:52:56.000000000 -0500
@@ -418,6 +418,10 @@
LWZReadByte(SDL_RWops *src, int flag, in
--- SDL_image/IMG_gif.orig.c 2008-02-01 11:58:19.000000000 +0100
+++ SDL_image/IMG_gif.c 2008-02-01 11:58:28.000000000 +0100
@@ -415,6 +415,10 @@
static int table[2][(1 << MAX_LWZ_BITS)];
static int stack[(1 << (MAX_LWZ_BITS)) * 2], *sp;
register int i;
+
+ /* Fixed buffer overflow found by Michael Skladnikiewicz */
+ if
(input_code_size > MAX_LWZ_BITS
)
+ if
( input_code_size > MAX_LWZ_BITS
)
+ return -1;
+
if (flag) {
set_code_size = input_code_size;
code_size = set_code_size + 1;
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment