22ead36c3c
CVE-2004-0941 CVE-2007-0455 CVE-2007-2756 CVE-2007-3472 CVE-2007-3473 CVE-2007-3477 CVE-2009-3546 CVE-2015-0848 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 Obtained from: CentOS libwmf RPM git Debian Bug 784205 Debian Bug 784192 Red Hat Bug 1227243 via Jason Unovitch in FreeBSD bug 201513 Reviewed by bsiegert@
15 lines
400 B
C
15 lines
400 B
C
$NetBSD: patch-src_extra_gd_gdft.c,v 1.1 2015/07/17 12:33:47 sevan Exp $
|
|
|
|
CVE-2007-0455 - Buffer overflow in the gdImageStringFTEx
|
|
|
|
--- src/extra/gd/gdft.c.orig 2005-07-27 20:35:05.000000000 +0000
|
|
+++ src/extra/gd/gdft.c
|
|
@@ -809,7 +809,7 @@ gdImageStringFT (gdImage * im, int *brec
|
|
{
|
|
ch = c & 0xFF; /* don't extend sign */
|
|
}
|
|
- next++;
|
|
+ if (*next) next++;
|
|
}
|
|
else
|
|
{
|