godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-08 02:09:48 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d106d0f5db67d8dc03476de27a98a7546aee082a
buildroot/package/ghostscript
History
Fabrice Fontaine d106d0f5db package/ghostscript: fix CVE-2020-15900 
A memory corruption issue was found in Artifex Ghostscript 9.50 and
9.52. Use of a non-standard PostScript operator can allow overriding of
file access controls. The 'rsearch' calculation for the 'post' size
resulted in a size that was too large, and could underflow to max
uint32_t. This was fixed in commit
5d499272b95a6b890a1397e11d20937de000d31b.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit 13ddfcdce7)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-08-28 18:10:51 +02:00
..
0001-Fix-cross-compilation-issue.patch
0002-Bug-702582-CVE-2020-15900-Memory-Corruption-in-Ghostscript-9-52.patch
package/ghostscript: fix CVE-2020-15900
2020-08-28 18:10:51 +02:00
Config.in
ghostscript.hash
ghostscript.mk
package/ghostscript: fix CVE-2020-15900
2020-08-28 18:10:51 +02:00