backport fix for CVE-2019-18397, stack buffer overflow in FriBiDi

ok aja
2019-11-08 22:39:25 +00:00 · 2019-11-08 22:39:25 +00:00 · b4cdc32958
commit b4cdc32958
parent eafe342dd4
2 changed files with 23 additions and 1 deletions
--- a/devel/fribidi/Makefile
+++ b/devel/fribidi/Makefile
@ -1,8 +1,9 @@
-# $OpenBSD: Makefile,v 1.24 2019/09/28 09:50:44 ajacoutot Exp $
+# $OpenBSD: Makefile,v 1.25 2019/11/08 22:39:25 sthen Exp $

 COMMENT=		library implementing the Unicode Bidirectional Algorithm

 V=			1.0.7
+REVISION=		0
 GH_PROJECT=		fribidi
 GH_ACCOUNT=		fribidi
 GH_TAGNAME=		v${V}
--- a/devel/fribidi/patches/patch-lib_fribidi-bidi_c
+++ b/devel/fribidi/patches/patch-lib_fribidi-bidi_c
@ -0,0 +1,21 @@
+$OpenBSD: patch-lib_fribidi-bidi_c,v 1.1 2019/11/08 22:39:25 sthen Exp $
+
+From 034c6e9a1d296286305f4cfd1e0072b879f52568 Mon Sep 17 00:00:00 2001
+From: Dov Grobgeld <dov.grobgeld@gmail.com>
+Date: Thu, 24 Oct 2019 09:37:29 +0300
+Subject: [PATCH] Truncate isolate_level to FRIBIDI_BIDI_MAX_EXPLICIT_LEVEL
+
+Index: lib/fribidi-bidi.c
+--- lib/fribidi-bidi.c.orig
+++ lib/fribidi-bidi.c
+@@ -747,7 +747,9 @@ fribidi_get_par_embedding_levels_ex (
+             }
+ 
+ 	  RL_LEVEL (pp) = level;
+-          RL_ISOLATE_LEVEL (pp) = isolate_level++;
+          RL_ISOLATE_LEVEL (pp) = isolate_level;
+          if (isolate_level < FRIBIDI_BIDI_MAX_EXPLICIT_LEVEL-1)
+	      isolate_level++;
+           base_level_per_iso_level[isolate_level] = new_level;
+ 
+ 	  if (!FRIBIDI_IS_NEUTRAL (override))