24401b885f
All the fun things one finds when looking at upstream git OBS-URL: https://build.opensuse.org/request/show/518553 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/lasem?expand=0&rev=11
29 lines
1005 B
Diff
29 lines
1005 B
Diff
From 6f2feed780d9139a45c06e1ad399d06a4f351fbf Mon Sep 17 00:00:00 2001
|
|
From: RyuzakiKK <aasonykk@gmail.com>
|
|
Date: Sat, 5 Aug 2017 21:40:55 +0200
|
|
Subject: cairo: Avoid integer overflow CVE-2013-7447
|
|
|
|
lasem is affected by a possible integer overflow, that was also
|
|
found and patched upstream in gtk+
|
|
https://git.gnome.org/browse/gtk+/commit/?id=894b1ae76a32720f4bb3d39cf460402e3ce331d6
|
|
---
|
|
src/lsmcairo.c | 2 +-
|
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
|
|
diff --git a/src/lsmcairo.c b/src/lsmcairo.c
|
|
index c568fd5..73fb93e 100644
|
|
--- a/src/lsmcairo.c
|
|
+++ b/src/lsmcairo.c
|
|
@@ -528,7 +528,7 @@ lsm_cairo_set_source_pixbuf (cairo_t *cairo,
|
|
format = CAIRO_FORMAT_ARGB32;
|
|
|
|
cairo_stride = cairo_format_stride_for_width (format, width);
|
|
- cairo_pixels = g_malloc (height * cairo_stride);
|
|
+ cairo_pixels = g_malloc_n (height, cairo_stride);
|
|
surface = cairo_image_surface_create_for_data ((unsigned char *)cairo_pixels,
|
|
format,
|
|
width, height, cairo_stride);
|
|
--
|
|
cgit v0.12
|
|
|