source: projects/specs/trunk/t/texlive/texlive-2009-CVE-2010-0739.patch @ 1973

Revision 1973, 613 bytes checked in by munepi, 14 years ago (diff)

texlive: rebuilt zlib-1.2.5; applied security patches and some patches for libpoppler-0.12
RevLine 
[1973]1Index: dospecial.c
2===================================================================
3--- a/texk/dvipsk/dospecial.c   (revision 17558)
4+++ b/texk/dvipsk/dospecial.c   (revision 17569)
5@@ -297,6 +297,12 @@
6    static int omega_specials = 0;
7 
8    if (nextstring + numbytes > maxstring) {
9+      if (numbytes < 0
10+          || (numbytes > 0 && 2 > INT_MAX / numbytes)
11+          || 2 * numbytes > 1000 + 2 * numbytes) {
12+         error("! Integer overflow in predospecial");
13+         exit(1);
14+      }
15       p = nextstring = mymalloc(1000 + 2 * numbytes) ;
16       maxstring = nextstring + 2 * numbytes + 700 ;
17    }
Note: See TracBrowser for help on using the repository browser.