rpms/jasper/devel patch-libjasper-stepsizes-overflow.diff, NONE, 1.1 jasper.spec, 1.22, 1.23
Rex Dieter (rdieter)
fedora-extras-commits at redhat.com
Wed May 23 19:05:55 UTC 2007
- Previous message (by thread): rpms/crossfire-maps/devel .cvsignore, 1.3, 1.4 crossfire-maps.spec, 1.4, 1.5 sources, 1.3, 1.4
- Next message (by thread): rpms/jasper/EL-4 patch-libjasper-stepsizes-overflow.diff, NONE, 1.1 jasper.spec, 1.20, 1.21
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: rdieter
Update of /cvs/pkgs/rpms/jasper/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv2676
Modified Files:
jasper.spec
Added Files:
patch-libjasper-stepsizes-overflow.diff
Log Message:
* Wed May 23 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-2
- CVE-2007-2721 (#240397)
patch-libjasper-stepsizes-overflow.diff:
--- NEW FILE patch-libjasper-stepsizes-overflow.diff ---
--- jasper-1.900.1.orig/src/libjasper/jpc/jpc_cs.c 2007-01-19 22:43:07.000000000 +0100
+++ jasper-1.900.1/src/libjasper/jpc/jpc_cs.c 2007-04-06 01:29:02.000000000 +0200
@@ -982,7 +982,10 @@ static int jpc_qcx_getcompparms(jpc_qcxc
compparms->numstepsizes = (len - n) / 2;
break;
}
- if (compparms->numstepsizes > 0) {
+ if (compparms->numstepsizes > 3 * JPC_MAXRLVLS + 1) {
+ jpc_qcx_destroycompparms(compparms);
+ return -1;
+ } else if (compparms->numstepsizes > 0) {
compparms->stepsizes = jas_malloc(compparms->numstepsizes *
sizeof(uint_fast16_t));
assert(compparms->stepsizes);
Index: jasper.spec
===================================================================
RCS file: /cvs/pkgs/rpms/jasper/devel/jasper.spec,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -r1.22 -r1.23
--- jasper.spec 29 Mar 2007 18:57:04 -0000 1.22
+++ jasper.spec 23 May 2007 19:05:20 -0000 1.23
@@ -11,7 +11,7 @@
Name: jasper
Group: System Environment/Libraries
Version: 1.900.1
-Release: 1%{?dist}
+Release: 2%{?dist}
License: JasPer License Version 2.0
%if "%{?geo:1}" == "1"
@@ -28,6 +28,9 @@
Patch1: jasper-1.701.0-GL.patch
# autoconf/automake bits of patch1
Patch2: jasper-1.701.0-GL-ac.patch
+# CVE-2007-2721 (bug #240397)
+# borrowed from http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=413041;msg=88
+Patch3: patch-libjasper-stepsizes-overflow.diff
BuildRequires: automake
BuildRequires: libjpeg-devel
@@ -52,6 +55,7 @@
%setup -q -n %{name}-%{version}%{?geo:.GEO}
%patch1 -p1 -b .GL
+%patch3 -p1 -b .CVE-2007-2721
%if "%{?geo:1}" == "1"
chmod +x configure configure.ac
@@ -64,6 +68,7 @@
%endif
+
%build
%configure \
@@ -115,6 +120,9 @@
%changelog
+* Wed May 23 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-2
+- CVE-2007-2721 (#240397)
+
* Thu Mar 29 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-1
- jasper-1.900.1
- Previous message (by thread): rpms/crossfire-maps/devel .cvsignore, 1.3, 1.4 crossfire-maps.spec, 1.4, 1.5 sources, 1.3, 1.4
- Next message (by thread): rpms/jasper/EL-4 patch-libjasper-stepsizes-overflow.diff, NONE, 1.1 jasper.spec, 1.20, 1.21
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list