summary refs log tree commit diff
path: root/gnu/packages/patches/zziplib-CVE-2017-5975.patch
diff options
context:
space:
mode:
authorMarius Bakke <mbakke@fastmail.com>2018-02-09 15:56:06 +0100
committerMarius Bakke <mbakke@fastmail.com>2018-02-09 16:43:49 +0100
commit165c8b2adcae739fb16db1e892241bf45814e3bd (patch)
treee9dd97d295fe75511e578d3cc2ae1f3f9806f3b8 /gnu/packages/patches/zziplib-CVE-2017-5975.patch
parenta68fdfea96370c8a4b95af1fcd6e2fd7eb72da29 (diff)
downloadguix-165c8b2adcae739fb16db1e892241bf45814e3bd.tar.gz
gnu: zziplib: Update to 0.13.68.
* gnu/packages/patches/zziplib-CVE-2017-5974.patch,
gnu/packages/patches/zziplib-CVE-2017-5975.patch,
gnu/packages/patches/zziplib-CVE-2017-5976.patch,
gnu/packages/patches/zziplib-CVE-2017-5978.patch,
gnu/packages/patches/zziplib-CVE-2017-5979.patch,
gnu/packages/patches/zziplib-CVE-2017-5981.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/compression.scm (zziplib): Update to 0.13.68.
[source](patches): Remove.
[arguments]: Remove #:parallel-tests?.  Set #:tests? #f.
Diffstat (limited to 'gnu/packages/patches/zziplib-CVE-2017-5975.patch')
-rw-r--r--gnu/packages/patches/zziplib-CVE-2017-5975.patch32
1 files changed, 0 insertions, 32 deletions
diff --git a/gnu/packages/patches/zziplib-CVE-2017-5975.patch b/gnu/packages/patches/zziplib-CVE-2017-5975.patch
deleted file mode 100644
index fad174b056..0000000000
--- a/gnu/packages/patches/zziplib-CVE-2017-5975.patch
+++ /dev/null
@@ -1,32 +0,0 @@
-Fix CVE-2017-5975:
-
-https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5975
-
-Patch copied from Debian.
-
-Index: zziplib-0.13.62/zzip/memdisk.c
-===================================================================
---- zziplib-0.13.62.orig/zzip/memdisk.c
-+++ zziplib-0.13.62/zzip/memdisk.c
-@@ -173,6 +173,8 @@ zzip_mem_entry_new(ZZIP_DISK * disk, ZZI
-         return 0;               /* errno=ENOMEM; */
-     ___ struct zzip_file_header *header =
-         zzip_disk_entry_to_file_header(disk, entry);
-+    if (!header)
-+	{ free(item); return 0; }
-     /*  there is a number of duplicated information in the file header
-      *  or the disk entry block. Theoretically some part may be missing
-      *  that exists in the other, ... but we will prefer the disk entry.
-Index: zziplib-0.13.62/zzip/mmapped.c
-===================================================================
---- zziplib-0.13.62.orig/zzip/mmapped.c
-+++ zziplib-0.13.62/zzip/mmapped.c
-@@ -289,6 +289,8 @@ zzip_disk_entry_to_file_header(ZZIP_DISK
-         (disk->buffer + zzip_disk_entry_fileoffset(entry));
-     if (disk->buffer > file_header || file_header >= disk->endbuf)
-         return 0;
-+    if (ZZIP_GET32(file_header) != ZZIP_FILE_HEADER_MAGIC)
-+        return 0;
-     return (struct zzip_file_header *) file_header;
- }
-
generated by cgit-pink 1.4.1 (git 2.36.1) at 2025-01-01 00:13:05 +0000