[Pkg-php-commits] [php/debian-etch] CVE-2009-2687: DoS via malformed JPEG images with invalid offset fields
Raphael Geissert
geissert at debian.org
Sat Nov 28 23:50:25 UTC 2009
---
debian/patches/150-CVE-2009-2687.patch | 15 +++++++++++++++
1 files changed, 15 insertions(+), 0 deletions(-)
create mode 100644 debian/patches/150-CVE-2009-2687.patch
diff --git a/debian/patches/150-CVE-2009-2687.patch b/debian/patches/150-CVE-2009-2687.patch
new file mode 100644
index 0000000..4b02c3e
--- /dev/null
+++ b/debian/patches/150-CVE-2009-2687.patch
@@ -0,0 +1,15 @@
+diff --git a/ext/exif/exif.c b/ext/exif/exif.c
+index 56bc3b9..86ca58a 100644
+--- a/ext/exif/exif.c
++++ b/ext/exif/exif.c
+@@ -3128,6 +3128,10 @@ static void exif_process_TIFF_in_JPEG(image_info_type *ImageInfo, char *CharBuf,
+ exif_error_docref(NULL EXIFERR_CC, ImageInfo, E_WARNING, "Invalid TIFF start (1)");
+ return;
+ }
++ if (offset_of_ifd > length) {
++ exif_error_docref(NULL EXIFERR_CC, ImageInfo, E_WARNING, "Invalid IFD start");
++ return;
++ }
+
+ ImageInfo->sections_found |= FOUND_IFD0;
+ /* First directory starts at offset 8. Offsets starts at 0. */
--
1.6.3.3
More information about the Pkg-php-commits
mailing list