Bjørn Lie
2ff75f4d0f
- Add libsoup2-CVE-2026-1761.patch: multipart: check length of bytes read soup_filter_input_stream_read_until() (bsc#1257598, CVE-2026-1761, glgo#GNOME/libsoup!496). OBS-URL: https://build.opensuse.org/request/show/1331494 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/libsoup2?expand=0&rev=35
13 lines
524 B
Diff
13 lines
524 B
Diff
Index: libsoup-2.74.3/libsoup/soup-filter-input-stream.c
|
|
===================================================================
|
|
--- libsoup-2.74.3.orig/libsoup/soup-filter-input-stream.c
|
|
+++ libsoup-2.74.3/libsoup/soup-filter-input-stream.c
|
|
@@ -272,6 +272,6 @@ soup_filter_input_stream_read_until (Sou
|
|
if (eof && !*got_boundary)
|
|
read_length = MIN (fstream->priv->buf->len, length);
|
|
else
|
|
- read_length = p - buf;
|
|
+ read_length = MIN ((gsize)(p - buf), length);
|
|
return read_from_buf (fstream, buffer, read_length);
|
|
}
|