- Fix security issue

PR: ports/121283 Security: CVE-2008-0411 Submitted by: bf <bf2006a at yahoo.com>
svn path=/head/; revision=208328
2008-03-02 12:43:31 +00:00 · 2008-03-02 12:43:31 +00:00 · 71c1212ed1 · 2021-03-31 03:12:20 +00:00
commit 71c1212ed1
parent 3ca6262380
4 changed files with 26 additions and 2 deletions
--- a/print/ghostscript-gpl/Makefile.inc
+++ b/print/ghostscript-gpl/Makefile.inc
@ -1,5 +1,5 @@
 # $FreeBSD$

 GS_VERSION=	8.61
-GS_REVISION=	1
+GS_REVISION=	2
 GS_EPOCH=	0
--- a/print/ghostscript-gpl/files/patch-src__zicc.c
+++ b/print/ghostscript-gpl/files/patch-src__zicc.c
@ -0,0 +1,12 @@
+--- src/zicc.c
+++ src/zicc.c	2008-02-05 16:11:59.000000000 +0000
+@@ -77,6 +77,9 @@ zseticcspace(i_ctx_t * i_ctx_p)
+     dict_find_string(op, "N", &pnval);
+     ncomps = pnval->value.intval;
+ 
+    if (2*ncomps > sizeof(range_buff)/sizeof(float))
+	return_error(e_rangecheck);
+
+     /* verify the DataSource entry */
+     if (dict_find_string(op, "DataSource", &pstrmval) <= 0)
+         return_error(e_undefined);
--- a/print/ghostscript8/Makefile.inc
+++ b/print/ghostscript8/Makefile.inc
@ -1,5 +1,5 @@
 # $FreeBSD$

 GS_VERSION=	8.61
-GS_REVISION=	1
+GS_REVISION=	2
 GS_EPOCH=	0
--- a/print/ghostscript8/files/patch-src__zicc.c
+++ b/print/ghostscript8/files/patch-src__zicc.c
@ -0,0 +1,12 @@
+--- src/zicc.c
+++ src/zicc.c	2008-02-05 16:11:59.000000000 +0000
+@@ -77,6 +77,9 @@ zseticcspace(i_ctx_t * i_ctx_p)
+     dict_find_string(op, "N", &pnval);
+     ncomps = pnval->value.intval;
+ 
+    if (2*ncomps > sizeof(range_buff)/sizeof(float))
+	return_error(e_rangecheck);
+
+     /* verify the DataSource entry */
+     if (dict_find_string(op, "DataSource", &pstrmval) <= 0)
+         return_error(e_undefined);