/[pkgs]/devel/OpenEXR/openexr-1.6.1-CVE-2009-1721.patch
ViewVC logotype

Contents of /devel/OpenEXR/openexr-1.6.1-CVE-2009-1721.patch

Parent Directory Parent Directory | Revision Log Revision Log

Revision 1.1 - (show annotations) (download) (as text)
Wed Jul 29 18:31:47 2009 UTC (3 months, 3 weeks ago) by rdieter
Branch: MAIN
CVS Tags: F-12-split, OpenEXR-1_6_1-8_fc12, HEAD
File MIME type: text/x-patch 
* Wed Jul 29 2009 Rex Dieter <rdieter@fedoraproject.org> 1.6.1-8
- CVE-2009-1720 OpenEXR: Multiple integer overflows (#513995)
- CVE-2009-1721 OpenEXR: Invalid pointer free by image decompression (#514003)
1 diff -up openexr-1.6.1/IlmImf/ImfAutoArray.h.CVE-2009-1721 openexr-1.6.1/IlmImf/ImfAutoArray.h
2 --- openexr-1.6.1/IlmImf/ImfAutoArray.h.CVE-2009-1721 2007-04-23 20:26:56.000000000 -0500
3 +++ openexr-1.6.1/IlmImf/ImfAutoArray.h 2009-07-29 13:22:08.309288375 -0500
4 @@ -57,7 +57,7 @@ namespace Imf {
5 {
6 public:
7
8 - AutoArray (): _data (new T [size]) {}
9 + AutoArray (): _data (new T [size]) {memset(_data, 0, size * sizeof(T));}
10 ~AutoArray () {delete [] _data;}
11
12 operator T * () {return _data;}
admin@fedoraproject.org
 ViewVC Help
Powered by ViewVC 1.1.2