Compare commits
3 Commits
| Author | SHA256 | Date | |
|---|---|---|---|
| a3e59648f5 | |||
| 6f89793a12 | |||
| e82c4f8ea8 |
@@ -0,0 +1,18 @@
|
|||||||
|
From 316c086e79d66b62c0c4bc66229ee894e4fdb7d1 Mon Sep 17 00:00:00 2001
|
||||||
|
From: Hayaki Saito <saitoha@me.com>
|
||||||
|
Date: Tue, 12 Aug 2025 21:30:24 +0900
|
||||||
|
Subject: [PATCH] Fix a heap-buffer-overflow problem reported by @err2zero
|
||||||
|
|
||||||
|
--- a/src/encoder.c
|
||||||
|
+++ b/src/encoder.c
|
||||||
|
@@ -744,9 +744,9 @@ sixel_debug_print_palette(
|
||||||
|
fprintf(stderr, "palette:\n");
|
||||||
|
for (i = 0; i < sixel_dither_get_num_of_palette_colors(dither); ++i) {
|
||||||
|
fprintf(stderr, "%d: #%02x%02x%02x\n", i,
|
||||||
|
+ palette[i * 3 + 0],
|
||||||
|
palette[i * 3 + 1],
|
||||||
|
- palette[i * 3 + 2],
|
||||||
|
- palette[i * 3 + 3]);
|
||||||
|
+ palette[i * 3 + 2]);
|
||||||
|
}
|
||||||
|
}
|
||||||
@@ -1,3 +0,0 @@
|
|||||||
version https://git-lfs.github.com/spec/v1
|
|
||||||
oid sha256:028552eb8f2a37c6effda88ee5e8f6d87b5d9601182ddec784a9728865f821e0
|
|
||||||
size 4272940
|
|
||||||
@@ -1,3 +1,9 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Fri Sep 5 12:46:55 UTC 2025 - Dirk Müller <dmueller@suse.com>
|
||||||
|
|
||||||
|
- add 0001-Fix-a-heap-buffer-overflow-problem-reported-by-err2z.patch
|
||||||
|
(bsc#1248454, CVE-2025-9300)
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Thu Feb 27 20:25:06 UTC 2025 - Enrico Belleri <kilgore.trout@idesmi.eu>
|
Thu Feb 27 20:25:06 UTC 2025 - Enrico Belleri <kilgore.trout@idesmi.eu>
|
||||||
|
|
||||||
|
|||||||
@@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package libsixel
|
# spec file for package libsixel
|
||||||
#
|
#
|
||||||
# Copyright (c) 2022 SUSE LLC
|
# Copyright (c) 2025 SUSE LLC and contributors
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@@ -26,6 +26,8 @@ Group: Development/Libraries/C and C++
|
|||||||
URL: https://github.com/libsixel/libsixel
|
URL: https://github.com/libsixel/libsixel
|
||||||
Source: https://github.com/libsixel/libsixel/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
|
Source: https://github.com/libsixel/libsixel/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
|
||||||
Patch0: meson.patch
|
Patch0: meson.patch
|
||||||
|
# CVE-2025-9300
|
||||||
|
Patch1: 0001-Fix-a-heap-buffer-overflow-problem-reported-by-err2z.patch
|
||||||
BuildRequires: bash
|
BuildRequires: bash
|
||||||
BuildRequires: meson
|
BuildRequires: meson
|
||||||
BuildRequires: pkgconfig
|
BuildRequires: pkgconfig
|
||||||
|
|||||||
@@ -1,17 +0,0 @@
|
|||||||
---
|
|
||||||
src/meson.build | 2 +-
|
|
||||||
1 file changed, 1 insertion(+), 1 deletion(-)
|
|
||||||
|
|
||||||
Index: b/src/meson.build
|
|
||||||
===================================================================
|
|
||||||
--- a/src/meson.build
|
|
||||||
+++ b/src/meson.build
|
|
||||||
@@ -21,7 +21,7 @@ sources = [
|
|
||||||
'writer.c'
|
|
||||||
]
|
|
||||||
|
|
||||||
-libsixel = both_libraries('sixel',
|
|
||||||
+libsixel = shared_library('sixel',
|
|
||||||
sources,
|
|
||||||
include_directories: [inc, inc_config],
|
|
||||||
dependencies: libsixel_deps,
|
|
||||||
Reference in New Issue
Block a user