- add a SECURITY FIX for graphicsmagick for SA33697, which could lead to

a DoS.
2009-04-22 13:19:12 +00:00 · 2009-04-22 13:19:12 +00:00 · bd925f1f01
commit bd925f1f01
parent c3ff6c32c9
2 changed files with 18 additions and 1 deletions
--- a/graphics/GraphicsMagick/Makefile
+++ b/graphics/GraphicsMagick/Makefile
@ -1,8 +1,9 @@
-# $OpenBSD: Makefile,v 1.9 2009/01/08 19:57:36 okan Exp $
+# $OpenBSD: Makefile,v 1.10 2009/04/22 13:19:12 jasper Exp $

 COMMENT=	image processing tools with stable ABI

 DISTNAME=	GraphicsMagick-1.3.3
+PKGNAME=	${DISTNAME}p0
 CATEGORIES=	graphics devel

 SHARED_LIBS +=	GraphicsMagick       1.0      # .3.3
--- a/graphics/GraphicsMagick/patches/patch-coders_bmp_c
+++ b/graphics/GraphicsMagick/patches/patch-coders_bmp_c
@ -0,0 +1,16 @@
+$OpenBSD: patch-coders_bmp_c,v 1.1 2009/04/22 13:19:12 jasper Exp $
+
+Security fix for SA33697, which could cause a DoS.
+Patch from upstream bugreport.
+
+--- coders/bmp.c.orig	Wed Apr 22 15:08:29 2009
+++ coders/bmp.c	Wed Apr 22 15:09:20 2009
+@@ -1226,6 +1226,8 @@ static Image *ReadBMPImage(const ImageInfo *image_info
+             DestroyImageList(image);
+             return((Image *) NULL);
+           }
+        DestroyBlobInfo(flipped_image->blob);
+        flipped_image->blob=ReferenceBlob(image->blob);
+         DestroyImage(image);
+         image=flipped_image;
+       }