rpms/lcms/devel lcms-CVE-2009-0793.patch, NONE, 1.1 lcms.spec, 1.25, 1.26

Nicolas Chauvet kwizart at fedoraproject.org
Tue Apr 21 23:28:52 UTC 2009 

Author: kwizart

Update of /cvs/pkgs/rpms/lcms/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv19036

Modified Files:
	lcms.spec 
Added Files:
	lcms-CVE-2009-0793.patch 
Log Message:
Add lcms-CVE-2009-0793.patch


lcms-CVE-2009-0793.patch:

--- NEW FILE lcms-CVE-2009-0793.patch ---
diff -up lcms-1.18/src/cmsxform.c.cve0793 lcms-1.18/src/cmsxform.c
--- lcms-1.18/src/cmsxform.c.cve0793	2009-03-21 16:31:52.000000000 +0100
+++ lcms-1.18/src/cmsxform.c	2009-04-22 01:20:40.000000000 +0200
@@ -660,6 +660,9 @@ LPMATSHAPER cmsBuildGrayOutputMatrixShap
                 GrayTRC = cmsReadICCGamma(hProfile, icSigGrayTRCTag);
                 FromLstarToXYZ(GrayTRC, Shapes1);
 
+		if (GrayTRC == NULL)
+			return NULL;
+
                 // Reversing must be done after curve translation
 
                 Shapes[0] = cmsReverseGamma(Shapes1[0]->nEntries, Shapes1[0]);
@@ -675,6 +678,9 @@ LPMATSHAPER cmsBuildGrayOutputMatrixShap
 
                 GrayTRC = cmsReadICCGammaReversed(hProfile, icSigGrayTRCTag);   // Y
 
+		if (GrayTRC == NULL)
+			return NULL;
+
                 Shapes[0] = cmsDupGamma(GrayTRC);
                 Shapes[1] = cmsDupGamma(GrayTRC);
                 Shapes[2] = cmsDupGamma(GrayTRC); 


Index: lcms.spec
===================================================================
RCS file: /cvs/pkgs/rpms/lcms/devel/lcms.spec,v
retrieving revision 1.25
retrieving revision 1.26
diff -u -r1.25 -r1.26
--- lcms.spec	23 Mar 2009 09:41:10 -0000	1.25
+++ lcms.spec	21 Apr 2009 23:28:19 -0000	1.26
@@ -2,13 +2,14 @@
 
 Name:           lcms
 Version:        1.18
-Release:        1%{?dist}
+Release:        2%{?dist}
 Summary:        Color Management System
 
 Group:          Applications/Productivity
 License:        MIT
 URL:            http://www.littlecms.com/
 Source0:        http://www.littlecms.com/lcms-%{version}.tar.gz
+Patch0:         lcms-CVE-2009-0793.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 
 BuildRequires:  libjpeg-devel
@@ -58,6 +59,7 @@
 
 %prep
 %setup -q
+%patch0 -p1 -b .cve0793
 
 find . -name \*.[ch] | xargs chmod -x
 chmod 0644 AUTHORS COPYING ChangeLog NEWS README.1ST doc/TUTORIAL.TXT doc/LCMSAPI.TXT
@@ -126,6 +128,9 @@
 
 
 %changelog
+* Tue Apr 22 2009 kwizart < kwizart at gmail.com > - 1.18-2
+- Add lcms-CVE-2009-0793.patch from 1.18a
+
 * Mon Mar 23 2009 kwizart < kwizart at gmail.com > - 1.18-1
 - Update to 1.18 (final)
 - Remove upstreamed patches

More information about the scm-commits mailing list