Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:Lazy_Kent
lcms
CVE-2013-4276.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2013-4276.patch of Package lcms
--- lcms-1.19.dfsg/samples/icctrans.c 2009-10-30 15:57:45.000000000 +0000 +++ lcms-1.19.dfsg/samples/icctrans.c 2013-08-06 11:53:14.385266647 +0100 @@ -86,6 +86,8 @@ static LPcmsNAMEDCOLORLIST InputColorant = NULL; static LPcmsNAMEDCOLORLIST OutputColorant = NULL; +unsigned int Buffer_size = 4096; + // isatty replacement @@ -500,7 +502,7 @@ Prefix[0] = 0; if (!lTerse) - sprintf(Prefix, "%s=", C); + snprintf(Prefix, 20, "%s=", C); if (InHexa) { @@ -648,7 +650,9 @@ static void GetLine(char* Buffer) { - scanf("%s", Buffer); + char User_buffer[Buffer_size]; + fgets(User_buffer, (Buffer_size - 1), stdin); + sscanf(User_buffer,"%s", Buffer); if (toupper(Buffer[0]) == 'Q') { // Quit? @@ -668,7 +672,7 @@ static double GetAnswer(const char* Prompt, double Range) { - char Buffer[4096]; + char Buffer[Buffer_size]; double val = 0.0; if (Range == 0.0) { // Range 0 means double value @@ -738,7 +742,7 @@ static WORD GetIndex(void) { - char Buffer[4096], Name[40], Prefix[40], Suffix[40]; + char Buffer[Buffer_size], Name[40], Prefix[40], Suffix[40]; int index, max; max = cmsNamedColorCount(hTrans)-1; --- lcms-1.19.dfsg/tifficc/tiffdiff.c 2009-10-30 15:57:46.000000000 +0000 +++ lcms-1.19.dfsg/tifficc/tiffdiff.c 2013-08-06 11:49:06.698951157 +0100 @@ -633,7 +633,7 @@ cmsIT8SetSheetType(hIT8, "TIFFDIFF"); - sprintf(Buffer, "Differences between %s and %s", TiffName1, TiffName2); + snprintf(Buffer, 256, "Differences between %s and %s", TiffName1, TiffName2); cmsIT8SetComment(hIT8, Buffer);
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor