mirror of
git://slackware.nl/current.git
synced 2024-12-28 09:59:53 +01:00
a5dc0f82be
patches/packages/libksba-1.6.3-x86_64-1_slack15.0.txz: Upgraded.
Fix another integer overflow in the CRL's signature parser.
(* Security fix *)
patches/packages/sdl-1.2.15-x86_64-13_slack15.0.txz: Rebuilt.
This update fixes a heap overflow problem in video/SDL_pixels.c in SDL.
By crafting a malicious .BMP file, an attacker can cause the application
using this library to crash, denial of service, or code execution.
Thanks to marav for the heads-up.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2021-33657
(* Security fix *)
11 lines
445 B
Diff
11 lines
445 B
Diff
--- ./SDL_ttf.c.orig 2012-01-14 22:44:08.000000000 -0600
|
|
+++ ./SDL_ttf.c 2016-06-08 11:59:50.163770281 -0500
|
|
@@ -1747,7 +1747,7 @@
|
|
/* Copy the character from the pixmap */
|
|
src = glyph->pixmap.buffer;
|
|
dst = (Uint8*) textbuf->pixels;
|
|
- for ( row = 0; row < glyph->bitmap.rows; ++row ) {
|
|
+ for ( row = 0; row < glyph->pixmap.rows; ++row ) {
|
|
memcpy( dst, src, glyph->pixmap.width );
|
|
src += glyph->pixmap.pitch;
|
|
dst += textbuf->pitch;
|