Projects
openEuler:24.03:SP1:Everything
ghostscript
_service:tar_scm:backport-CVE-2024-46956.patch
Sign Up
Log In
Username
Password
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _service:tar_scm:backport-CVE-2024-46956.patch of Package ghostscript
From ea69a1388245ad959d31c272b5ba66d40cebba2c Mon Sep 17 00:00:00 2001 From: Zdenek Hutyra <zhutyra@centrum.cz> Date: Tue, 23 Jul 2024 11:48:39 +0100 Subject: [PATCH] PostScript interpreter - fix buffer length check Bug 707895 See bug report for details. CVE-2024-46956 --- psi/zfile.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/psi/zfile.c b/psi/zfile.c index fe3f7e9..027f412 100644 --- a/psi/zfile.c +++ b/psi/zfile.c @@ -440,7 +440,7 @@ file_continue(i_ctx_t *i_ctx_p) if (code == ~(uint) 0) { /* all done */ esp -= 5; /* pop proc, pfen, devlen, iodev , mark */ return o_pop_estack; - } else if (code > len) { /* overran string */ + } else if (code > len - devlen) { /* overran string */ return_error(gs_error_rangecheck); } else if (iodev != iodev_default(imemory) -- 2.27.0
Locations
Projects
Search
Status Monitor
Help
Open Build Service
OBS Manuals
API Documentation
OBS Portal
Reporting a Bug
Contact
Mailing List
Forums
Chat (IRC)
Twitter
Open Build Service (OBS)
is an
openSUSE project
.
浙ICP备2022010568号-2