From 2fba2715ca5e3c63d644737df63aab1ed36215fa179afd54ae697d6aa3e81c59 Mon Sep 17 00:00:00 2001
From: Petr Gajdos <pgajdos@suse.com>
Date: Wed, 9 Jan 2019 10:07:31 +0000
Subject: [PATCH] - complete fix for CVE-2018-20365 [bsc#1120500]

OBS-URL: https://build.opensuse.org/package/show/graphics/libraw?expand=0&rev=127
---
 libraw-CVE-2018-20365.patch | 23 +++++++++++++++++++++++
 libraw.changes              |  5 +++++
 2 files changed, 28 insertions(+)
 create mode 100644 libraw-CVE-2018-20365.patch

diff --git a/libraw-CVE-2018-20365.patch b/libraw-CVE-2018-20365.patch
new file mode 100644
index 0000000..b08d5c9
--- /dev/null
+++ b/libraw-CVE-2018-20365.patch
@@ -0,0 +1,23 @@
+diff --git a/src/libraw_cxx.cpp b/src/libraw_cxx.cpp
+index b5fe5eab..b1d6d3c0 100644
+--- a/src/libraw_cxx.cpp
++++ b/src/libraw_cxx.cpp
+@@ -3195,7 +3195,7 @@ int LibRaw::raw2image(void)
+     get_decoder_info(&decoder_info);
+ 
+     // Move saved bitmap to imgdata.image
+-    if (imgdata.idata.filters || P1.colors == 1)
++    if ((imgdata.idata.filters || P1.colors == 1) && imgdata.rawdata.raw_image)
+     {
+       if (IO.fuji_width)
+       {
+@@ -3566,7 +3566,7 @@ int LibRaw::raw2image_ex(int do_subtract_black)
+     }
+ 
+     // Move saved bitmap to imgdata.image
+-    if (imgdata.idata.filters || P1.colors == 1)
++    if ((imgdata.idata.filters || P1.colors == 1) && imgdata.rawdata.raw_image)
+     {
+       if (IO.fuji_width)
+       {
+
diff --git a/libraw.changes b/libraw.changes
index 5de9a9c..c510a6c 100644
--- a/libraw.changes
+++ b/libraw.changes
@@ -1,3 +1,8 @@
+-------------------------------------------------------------------
+Wed Jan  9 08:48:24 UTC 2019 - Petr Gajdos <pgajdos@suse.com>
+
+- complete fix for CVE-2018-20365 [bsc#1120500]
+
 -------------------------------------------------------------------
 Tue Jan  8 13:22:31 UTC 2019 - Petr Gajdos <pgajdos@suse.com>