FreeBSD Bugzilla – Attachment 217132 Details for
Bug 248580
print/ghostscript9-agpl-base: Fix SAFER Sandbox Breakout vulnerability (CVE-2020-15900)
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
Fixed CVE-2020-15900
ghostscript9-agpl-base.diff (text/plain), 1.71 KB, created by
Vladimir Druzenko
on 2020-08-10 17:03:55 UTC
(
hide
)
Description:
Fixed CVE-2020-15900
Filename:
MIME Type:
Creator:
Vladimir Druzenko
Created:
2020-08-10 17:03:55 UTC
Size:
1.71 KB
patch
obsolete
>diff -urN print/ghostscript9-agpl-base.orig/Makefile print/ghostscript9-agpl-base/Makefile >--- print/ghostscript9-agpl-base.orig/Makefile >+++ print/ghostscript9-agpl-base/Makefile >@@ -2,7 +2,7 @@ > > PORTNAME= ghostscript > PORTVERSION= 9.52 >-PORTREVISION= 6 >+PORTREVISION= 7 > CATEGORIES= print > MASTER_SITES= https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs${PORTVERSION:S/.//}/ > PKGNAMESUFFIX= 9-agpl-base >diff -urN print/ghostscript9-agpl-base.orig/files/patch-psi_zstring.c print/ghostscript9-agpl-base/files/patch-psi_zstring.c >--- print/ghostscript9-agpl-base.orig/files/patch-psi_zstring.c >+++ print/ghostscript9-agpl-base/files/patch-psi_zstring.c >@@ -0,0 +1,27 @@ >+--- psi/zstring.c.orig >++++ psi/zstring.c >+@@ -142,13 +142,18 @@ search_impl(i_ctx_t *i_ctx_p, bool forward) >+ return 0; >+ found: >+ op->tas.type_attrs = op1->tas.type_attrs; >+- op->value.bytes = ptr; >+- r_set_size(op, size); >++ op->value.bytes = ptr; /* match */ >++ op->tas.rsize = size; /* match */ >+ push(2); >+- op[-1] = *op1; >+- r_set_size(op - 1, ptr - op[-1].value.bytes); >+- op1->value.bytes = ptr + size; >+- r_set_size(op1, count + (!forward ? (size - 1) : 0)); >++ op[-1] = *op1; /* pre */ >++ op[-3].value.bytes = ptr + size; /* post */ >++ if (forward) { >++ op[-1].tas.rsize = ptr - op[-1].value.bytes; /* pre */ >++ op[-3].tas.rsize = count; /* post */ >++ } else { >++ op[-1].tas.rsize = count; /* pre */ >++ op[-3].tas.rsize -= count + size; /* post */ >++ } >+ make_true(op); >+ return 0; >+ }
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=217132">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Flags:
vvd
:
maintainer-approval?
(
doceng
)
Actions:
View
|
Diff
Attachments on
bug 248580
: 217132