Commit 25a0f4dd authored by Natanael Copa's avatar Natanael Copa

main/pixman: security fix for CVE-2013-6425

fixes #2555
parent 566868b5
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=pixman
pkgver=0.24.4
pkgrel=0
pkgrel=1
pkgdesc="Pixman library"
url="http://xorg.freedesktop.org"
arch="all"
......@@ -9,18 +9,30 @@ license="custom"
subpackages="$pkgname-dev"
depends=
makedepends="perl"
source="http://xorg.freedesktop.org/releases/individual/lib/$pkgname-$pkgver.tar.bz2"
source="http://xorg.freedesktop.org/releases/individual/lib/$pkgname-$pkgver.tar.bz2
CVE-2013-6425.patch"
_builddir="$srcdir"/$pkgname-$pkgver
prepare() {
cd "$_builddir"
for i in $source; do
case $i in
*.patch) msg $i; patch -p1 -i "$srcdir"/$i || return 1;;
esac
done
}
build() {
cd "$srcdir"/$pkgname-$pkgver
cd "$_builddir"
./configure --prefix=/usr \
--disable-static || return 1
make || return 1
}
package() {
cd "$srcdir"/$pkgname-$pkgver
cd "$_builddir"
make DESTDIR="$pkgdir" install || return 1
rm "$pkgdir"/usr/lib/*.la || return 1
}
md5sums="89eb7db8853681bbcea626b161de0488 pixman-0.24.4.tar.bz2"
md5sums="89eb7db8853681bbcea626b161de0488 pixman-0.24.4.tar.bz2
3dac2c878fdb09f627edafbe50daa7e3 CVE-2013-6425.patch"
From 5e14da97f16e421d084a9e735be21b1025150f0c Mon Sep 17 00:00:00 2001
From: Ritesh Khadgaray <khadgaray@gmail.com>
Date: Wed, 23 Oct 2013 21:29:07 +0000
Subject: pixman_trapezoid_valid(): Fix underflow when bottom is close to MIN_INT
If t->bottom is close to MIN_INT (probably invalid value), subtracting
top can lead to underflow which causes crashes. Attached patch will
fix the issue.
This fixes bug 67484.
---
diff --git a/pixman/pixman.h b/pixman/pixman.h
index 7ff9fb5..509ba5e 100644
--- a/pixman/pixman.h
+++ b/pixman/pixman.h
@@ -1030,7 +1030,7 @@ struct pixman_triangle
#define pixman_trapezoid_valid(t) \
((t)->left.p1.y != (t)->left.p2.y && \
(t)->right.p1.y != (t)->right.p2.y && \
- (int) ((t)->bottom - (t)->top) > 0)
+ ((t)->bottom > (t)->top))
struct pixman_span_fix
{
--
cgit v0.9.0.2-2-gbebe
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment