summary refs log tree commit diff
path: root/gnu/packages/patches/zziplib-CVE-2017-5981.patch
blob: ed82cb3b915e90e4ba253d66c0536a9a3ce66e26 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
Fix CVE-2017-5981:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5981

Patch copied from Debian.
Index: zziplib-0.13.62/zzip/fseeko.c
===================================================================
--- zziplib-0.13.62.orig/zzip/fseeko.c
+++ zziplib-0.13.62/zzip/fseeko.c
@@ -311,7 +311,8 @@ zzip_entry_findfirst(FILE * disk)
             } else
                 continue;
 
-            assert(0 <= root && root < mapsize);
+	    if (root < 0 || root >= mapsize)
+	        goto error;
             if (fseeko(disk, root, SEEK_SET) == -1)
                 goto error;
             if (fread(disk_(entry), 1, sizeof(*disk_(entry)), disk)