[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

rpms/tk/FC-6 tk-gifoverflow.patch,NONE,1.1 tk.spec,1.22,1.23



Author: mmaslano

Update of /cvs/dist/rpms/tk/FC-6
In directory cvs.devel.redhat.com:/tmp/cvs-serv24974

Modified Files:
	tk.spec 
Added Files:
	tk-gifoverflow.patch 
Log Message:
gif buffer overflow CVE-2007-5137


tk-gifoverflow.patch:
 tkImgGIF.c |    2 +-
 1 files changed, 1 insertion(+), 1 deletion(-)

--- NEW FILE tk-gifoverflow.patch ---
--- tk8.4.15/generic/tkImgGIF.c.old	2006-03-27 14:13:56.000000000 +0200
+++ tk8.4.15/generic/tkImgGIF.c	2007-09-17 09:28:42.000000000 +0200
@@ -995,7 +995,7 @@
 	 */
 	if (interlace) {
 	    ypos += interlaceStep[pass];
-	    while (ypos >= height) {
+	    while (ypos >= rows) {
 		pass++;
 		if (pass > 3) {
 		    return TCL_OK;


Index: tk.spec
===================================================================
RCS file: /cvs/dist/rpms/tk/FC-6/tk.spec,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -r1.22 -r1.23
--- tk.spec	20 Jul 2006 20:04:17 -0000	1.22
+++ tk.spec	17 Oct 2007 07:04:36 -0000	1.23
@@ -3,7 +3,7 @@
 Summary: Tk graphical toolkit for the Tcl scripting language
 Name: tk
 Version: %{majorver}.13
-Release: 3%{?dist}
+Release: 4%{?dist}
 License: BSD
 Group: Development/Languages
 URL: http://tcl.sourceforge.net/
@@ -20,6 +20,7 @@
 Patch3: tk-8.4-no_rpath.patch
 Patch4: tk-8.4.13-autoconf.patch
 Patch5: tk-8.4.13-cflags.patch
+Patch6: tk-gifoverflow.patch
 
 %description
 When paired with the Tcl scripting language, Tk provides a fast and powerful
@@ -47,6 +48,7 @@
 %patch3 -p1 -b .3-rpath
 %patch4 -p1 -b .4-ac213
 %patch5 -p1 -b .5-cflags
+%patch6 -p1 -b .6-gifoverflow
 
 # patch1 touches tcl.m4
 cd unix
@@ -117,6 +119,10 @@
 %{_mandir}/mann/*
 
 %changelog
+* Wed Oct 17 2007 Marcela Maslanova <mmaslano redhat com> - 8.4.13-4
+- gif buffer overflow CVE-2007-5137
+- Resolves: rhbz#332071
+
 * Thu Jul 20 2006 David Cantrell <dcantrell redhat com> - 8.4.13-3
 - Patch from Dennis Gilmore <dennis ausil us> for sparc64 (#199378)
 


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]