summary refs log tree commit diff
path: root/gnu/packages/patches/jasper-CVE-2014-8157.patch
diff options
context:
space:
mode:
authorEfraim Flashner <efraim@flashner.co.il>2016-10-17 23:47:14 +0300
committerEfraim Flashner <efraim@flashner.co.il>2016-10-17 23:51:38 +0300
commitb333d00c3566a8a6b058a35426da96200ebf2c6d (patch)
treefcca109def21a232cb8a8ea88acb01a9dcd08162 /gnu/packages/patches/jasper-CVE-2014-8157.patch
parent6ace9f80f15f7d5fc35e76b0dad7c0d298ad04ad (diff)
downloadguix-b333d00c3566a8a6b058a35426da96200ebf2c6d.tar.gz
gnu: jasper: Update to 1.900.5.
* gnu/packages/image.scm (jasper): Update to 1.900.5.
[source]: Remove patches.
[native-inputs]: Remove unzip.
* gnu/packages/patches/jasper-CVE-2007-2721.patch,
gnu/packages/patches/jasper-CVE-2008-3520.patch,
gnu/packages/patches/jasper-CVE-2008-3522.patch,
gnu/packages/patches/jasper-CVE-2011-4516-and-CVE-2011-4517.patch,
gnu/packages/patches/jasper-CVE-2014-8137.patch,
gnu/packages/patches/jasper-CVE-2014-8138.patch,
gnu/packages/patches/jasper-CVE-2014-8157.patch,
gnu/packages/patches/jasper-CVE-2014-8158.patch,
gnu/packages/patches/jasper-CVE-2014-9029.patch,
gnu/packages/patches/jasper-CVE-2016-1577.patch,
gnu/packages/patches/jasper-CVE-2016-1867.patch,
gnu/packages/patches/jasper-CVE-2016-2089.patch,
gnu/packages/patches/jasper-CVE-2016-2116.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
Diffstat (limited to 'gnu/packages/patches/jasper-CVE-2014-8157.patch')
-rw-r--r--gnu/packages/patches/jasper-CVE-2014-8157.patch19
1 files changed, 0 insertions, 19 deletions
diff --git a/gnu/packages/patches/jasper-CVE-2014-8157.patch b/gnu/packages/patches/jasper-CVE-2014-8157.patch
deleted file mode 100644
index 62f4a6b32c..0000000000
--- a/gnu/packages/patches/jasper-CVE-2014-8157.patch
+++ /dev/null
@@ -1,19 +0,0 @@
-Fix CVE-2014-8157 (dec->numtiles off-by-one check in jpc_dec_process_sot()).
-
-Copied from Fedora.
-
-http://pkgs.fedoraproject.org/cgit/rpms/jasper.git/tree/jasper-CVE-2014-8157.patch
-https://bugzilla.redhat.com/show_bug.cgi?id=1179282
-
-diff -up jasper-1.900.1/src/libjasper/jpc/jpc_dec.c.CVE-2014-8157 jasper-1.900.1/src/libjasper/jpc/jpc_dec.c
---- jasper-1.900.1/src/libjasper/jpc/jpc_dec.c.CVE-2014-8157	2015-01-19 16:59:36.000000000 +0100
-+++ jasper-1.900.1/src/libjasper/jpc/jpc_dec.c	2015-01-19 17:07:41.609863268 +0100
-@@ -489,7 +489,7 @@ static int jpc_dec_process_sot(jpc_dec_t
- 		dec->curtileendoff = 0;
- 	}
- 
--	if (JAS_CAST(int, sot->tileno) > dec->numtiles) {
-+	if (JAS_CAST(int, sot->tileno) >= dec->numtiles) {
- 		jas_eprintf("invalid tile number in SOT marker segment\n");
- 		return -1;
- 	}