mirror of
https://git.FreeBSD.org/ports.git
synced 2025-01-08 06:48:28 +00:00
e720cb2863
The port had 5 CVEs reported in vuxml entry < http://www.vuxml.org/freebsd/11dc3890-0e64-11e8-99b0-d017c2987f9a.html >. These patches are fix for CVE-2017-1404 Reported by: Philip Jocks <pj@netzkommune.de> Approved by: sunpoet (maintainer) Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D16685
12 lines
541 B
C
12 lines
541 B
C
--- src/bin/jpwl/convert.c.orig 2018-08-02 17:47:37 UTC
|
|
+++ src/bin/jpwl/convert.c
|
|
@@ -1348,7 +1348,7 @@ opj_image_t* pgxtoimage(const char *file
|
|
}
|
|
|
|
fseek(f, 0, SEEK_SET);
|
|
- if (fscanf(f, "PG%[ \t]%c%c%[ \t+-]%d%[ \t]%d%[ \t]%d", temp, &endian1,
|
|
+ if (fscanf(f, "PG%31[ \t]%c%c%31[ \t+-]%d%31[ \t]%d%31[ \t]%d", temp, &endian1,
|
|
&endian2, signtmp, &prec, temp, &w, temp, &h) != 9) {
|
|
fprintf(stderr,
|
|
"ERROR: Failed to read the right number of element from the fscanf() function!\n");
|