This is an automated email from the git hooks/post-receive script.
sebastic pushed a commit to branch jessie
in repository freexl.
commit 39e5a6253942a23351c301635c8892a72124e9ba
Author: Bas Couwenberg <sebas...@xs4all.nl>
Date: Wed Jul 15 22:11:54 2015 +0200
Add patch to fix 32 bit multiplication overflow.
---
debian/changelog | 6 ++++
debian/patches/32bit-multiplication-overflow.patch | 38 ++++++++++++++++++++++
debian/patches/series | 1 +
3 files changed, 45 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index dc83019..fd823a5 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+freexl (1.0.0g-1+deb8u2) UNRELEASED; urgency=medium
+
+ * Add patch to fix 32 bit multiplication overflow.
+
+ -- Bas Couwenberg <sebas...@debian.org> Wed, 15 Jul 2015 22:11:02 +0200
+
freexl (1.0.0g-1+deb8u1) unstable; urgency=high
* Update my email to @debian.org address.
diff --git a/debian/patches/32bit-multiplication-overflow.patch
b/debian/patches/32bit-multiplication-overflow.patch
new file mode 100644
index 0000000..f4e1d65
--- /dev/null
+++ b/debian/patches/32bit-multiplication-overflow.patch
@@ -0,0 +1,38 @@
+Description: Fixing a critical bug (32 bit multiplication overflow) reported
by RHEL maintainers
+Origin:
https://www.gaia-gis.it/fossil/freexl/fdiff?v1=4f9408c216ead322&v2=44802d385bc32499&sbs=1
+Author: Alessandro Furieri <a.furi...@lqt.it>
+
+--- a/src/freexl.c
++++ b/src/freexl.c
+@@ -1066,6 +1066,7 @@ allocate_cells (biff_workbook * workbook
+ /* allocating the rows and cells for the active Worksheet */
+ unsigned int row;
+ unsigned int col;
++ double dsize;
+ biff_cell_value *p_cell;
+
+ if (workbook == NULL)
+@@ -1073,6 +1074,14 @@ allocate_cells (biff_workbook * workbook
+ if (workbook->active_sheet == NULL)
+ return FREEXL_NULL_ARGUMENT;
+
++/* testing for an unrealistically high memory size > 256MB */
++ dsize =
++ (double) sizeof (biff_cell_value) *
++ (double) (workbook->active_sheet->rows) *
++ (double) (workbook->active_sheet->columns);
++ if (dsize > 256.0 * 1024.0 * 1024.0)
++ return FREEXL_INSUFFICIENT_MEMORY;
++
+ /* allocating the cell values array */
+ workbook->active_sheet->cell_values =
+ malloc (sizeof (biff_cell_value) *
+@@ -1725,6 +1734,8 @@ parse_SST (biff_workbook * workbook, int
+ }
+ workbook->shared_strings.utf8_strings =
+ malloc (sizeof (char **) * workbook->shared_strings.string_count);
++ if (workbook->shared_strings.utf8_strings == NULL)
++ return FREEXL_INSUFFICIENT_MEMORY;
+ for (i_string = 0; i_string < workbook->shared_strings.string_count;
+ i_string++)
+ *(workbook->shared_strings.utf8_strings + i_string) = NULL;
diff --git a/debian/patches/series b/debian/patches/series
index 079be2f..7fa2afa 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1 +1,2 @@
afl-vulnerabilitities.patch
+32bit-multiplication-overflow.patch
--
Alioth's /usr/local/bin/git-commit-notice on
/srv/git.debian.org/git/pkg-grass/freexl.git
_______________________________________________
Pkg-grass-devel mailing list
Pkg-grass-devel@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-grass-devel
