Hello community, here is the log from the commit of package jasper for openSUSE:Factory checked in at 2014-03-18 16:21:18 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/jasper (Old) and /work/SRC/openSUSE:Factory/.jasper.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "jasper" Changes: -------- --- /work/SRC/openSUSE:Factory/jasper/jasper.changes 2013-09-14 19:10:23.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.jasper.new/jasper.changes 2014-03-18 16:21:24.000000000 +0100 @@ -1,0 +2,5 @@ +Wed Mar 5 15:26:47 UTC 2014 - [email protected] + +- fixed possible overflow (bnc#725758, bnc#830803) + +------------------------------------------------------------------- New: ---- jasper-1.900.1-bug725758.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ jasper.spec ++++++ --- /var/tmp/diff_new_pack.iWUKGp/_old 2014-03-18 16:21:27.000000000 +0100 +++ /var/tmp/diff_new_pack.iWUKGp/_new 2014-03-18 16:21:27.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package jasper # -# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -34,6 +34,7 @@ Patch2: %{name}-%{version}-bug258253.patch Patch3: %{name}-%{version}-bug392410.patch Patch4: %{name}-%{version}-no-undef-true-false.patch +Patch5: jasper-1.900.1-bug725758.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -78,6 +79,7 @@ %patch2 %patch3 %patch4 +%patch5 -p1 %build autoreconf -i -f ++++++ jasper-1.900.1-bug725758.patch ++++++ diff -ru jasper-1.900.1.orig/src/libjasper/jpc/jpc_cs.c jasper-1.900.1/src/libjasper/jpc/jpc_cs.c --- jasper-1.900.1.orig/src/libjasper/jpc/jpc_cs.c 2011-11-29 14:13:01.000000000 +0100 +++ jasper-1.900.1/src/libjasper/jpc/jpc_cs.c 2011-11-29 14:15:11.638066001 +0100 @@ -744,6 +744,12 @@ return -1; } compparms->numrlvls = compparms->numdlvls + 1; + if (compparms->numrlvls > JPC_MAXRLVLS) { + compparms->numrlvls = 0; + jpc_cox_destroycompparms(compparms); + return -1; + } + if (prtflag) { for (i = 0; i < compparms->numrlvls; ++i) { if (jpc_getuint8(in, &tmp)) { @@ -1331,7 +1337,7 @@ jpc_crgcomp_t *comp; uint_fast16_t compno; crg->numcomps = cstate->numcomps; - if (!(crg->comps = jas_alloc2(cstate->numcomps, sizeof(uint_fast16_t)))) { + if (!(crg->comps = jas_alloc2(cstate->numcomps, sizeof(jpc_crgcomp_t)))) { return -1; } for (compno = 0, comp = crg->comps; compno < cstate->numcomps; -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
