- Add CVE-2019-15757.patch [boo#1148728]
OBS-URL: https://build.opensuse.org/package/show/filesystems/libmirage?expand=0&rev=55
This commit is contained in:
parent
217c4be070
commit
8663f54222
24
CVE-2019-15757.patch
Normal file
24
CVE-2019-15757.patch
Normal file
@ -0,0 +1,24 @@
|
||||
Origin: https://gist.github.com/andreafioraldi/343d9ba64060b548c02362a5e61ec932
|
||||
|
||||
---
|
||||
images/image-nrg/parser.c | 7 +++++++
|
||||
1 file changed, 7 insertions(+)
|
||||
|
||||
Index: libmirage-3.2.2/images/image-nrg/parser.c
|
||||
===================================================================
|
||||
--- a/libmirage-3.2.2.orig/images/image-nrg/parser.c
|
||||
+++ b/libmirage-3.2.2/images/image-nrg/parser.c
|
||||
@@ -987,6 +987,13 @@ static MirageDisc *mirage_parser_nrg_loa
|
||||
/* Set CD-ROM as default medium type, will be changed accordingly if there
|
||||
is a MTYP block provided */
|
||||
mirage_disc_set_medium_type(self->priv->disc, MIRAGE_MEDIUM_CD);
|
||||
+ /* Length integrity check */
|
||||
+ if (self->priv->nrg_data_length == 0) {
|
||||
+ MIRAGE_DEBUG(self, MIRAGE_DEBUG_WARNING, "%s: rg_data_length must be greater than 0!\n", __debug__);
|
||||
+ g_set_error(error, MIRAGE_ERROR, MIRAGE_ERROR_IMAGE_FILE_ERROR, Q_("nrg_data_length must be greater than 0!"));
|
||||
+ succeeded = FALSE;
|
||||
+ goto end;
|
||||
+ }
|
||||
|
||||
/* Read descriptor data */
|
||||
self->priv->nrg_data = g_malloc(self->priv->nrg_data_length);
|
@ -1,3 +1,8 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 3 09:53:55 UTC 2019 - Jan Engelhardt <jengelh@inai.de>
|
||||
|
||||
- Add CVE-2019-15757.patch [boo#1148728]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Aug 26 08:28:33 UTC 2019 - Jan Engelhardt <jengelh@inai.de>
|
||||
|
||||
|
@ -30,6 +30,7 @@ URL: http://cdemu.sf.net/about/libmirage/
|
||||
Source: https://downloads.sf.net/cdemu/%name-%version.tar.bz2
|
||||
Patch1: 0001-libMirage-CSO-filter-validate-part-size.patch
|
||||
Patch2: 0002-libMirage-CSO-filter-replaced-a-g_assert-with-error-.patch
|
||||
Patch3: CVE-2019-15757.patch
|
||||
BuildRequires: cmake >= 2.8.5
|
||||
BuildRequires: intltool >= 0.21
|
||||
BuildRequires: pkg-config >= 0.16
|
||||
|
Loading…
Reference in New Issue
Block a user