Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP3:GA
ghostscript.3394
CVE-2016-7979.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2016-7979.patch of Package ghostscript.3394
From 875a0095f37626a721c7ff57d606a0f95af03913 Mon Sep 17 00:00:00 2001 From: Ken Sharp <ken.sharp@artifex.com> Date: Wed, 5 Oct 2016 10:10:58 +0100 Subject: [PATCH] DSC parser - validate parameters Bug #697190 ".initialize_dsc_parser doesn't validate the parameter is a dict type before using it." Regardless of any security implications, its simply wrong for a PostScript operator not to validate its parameter(s). No differences expected. CVE-2016-7979 --- psi/zdscpars.c | 13 +++++++++---- 1 file changed, 9 insertions(+), 4 deletions(-) --- ghostscript-9.15.orig/psi/zdscpars.c 2014-09-22 12:17:33.000000000 +0200 +++ ghostscript-9.15.orig/psi/zdscpars.c 2016-10-08 21:26:14.726676991 +0200 @@ -150,11 +150,16 @@ zinitialize_dsc_parser(i_ctx_t *i_ctx_p) ref local_ref; int code; os_ptr const op = osp; - dict * const pdict = op->value.pdict; - gs_memory_t * const mem = (gs_memory_t *)dict_memory(pdict); - dsc_data_t * const data = - gs_alloc_struct(mem, dsc_data_t, &st_dsc_data_t, "DSC parser init"); + dict *pdict; + gs_memory_t *mem; + dsc_data_t *data; + check_read_type(*op, t_dictionary); + + pdict = op->value.pdict; + mem = (gs_memory_t *)dict_memory(pdict); + + data = gs_alloc_struct(mem, dsc_data_t, &st_dsc_data_t, "DSC parser init"); if (!data) return_error(e_VMerror); data->document_level = 0;
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor