Date: Wed, 7 Jul 2004 12:56:38 +0200 From: Oliver Eikemeier <eikemeier@fillmore-labs.com> To: Andrey A.Chernov <ache@FreeBSD.org> Cc: ports-committers@FreeBSD.org Subject: Re: cvs commit: ports/graphics/png Makefile ports/graphics/png/files patch-pngrtran.c Message-ID: <527B0188-D004-11D8-8006-00039312D914@fillmore-labs.com> In-Reply-To: <200407071033.i67AXSiM061232@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Andrey A. Chernov wrote: > ache 2004-07-07 10:33:28 UTC > > FreeBSD ports repository > > Modified files: > graphics/png Makefile > Added files: > graphics/png/files patch-pngrtran.c > Log: > In 16-bit samples case the starting offsets for the loops are > calculated > incorrectly which may cause a buffer overrun beyond the beginning of > the row buffer. > > Submitted by: Robert Nagy <robert@openbsd.org> AFAICS this fixes CAN-2002-1363: <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1363>; Would you mind adding an entry to the vulnerability database for that? Refer to <http://people.freebsd.org/~eik/texts/portaudit_entries.txt>; for some pointers. Thanks -Oliver
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?527B0188-D004-11D8-8006-00039312D914>