← Back to branch summary

~ubuntu-branches/ubuntu/dapper/tk8.0/dapper-updates

« back to all changes in this revision

Viewing changes to generic/tkImgGIF.c

  • Committer: Bazaar Package Importer
  • Author(s): Marc Deslauriers
  • Date: 2008-11-03 15:23:14 UTC
  • Revision ID: james.westby@ubuntu.com-20081103152314-cjnlbn3n8jl2dnfi
Tags: 8.0.5-11ubuntu0.1
https://launchpad.net/bugs/191204
* SECURITY UPDATE: buffer overflow and potential arbitrary code execution
  via crafted GIF image (LP: #191204)
  - generic/tkImgGIF.c: fix from upstream to validate initialCodeSize
  - http://tktoolkit.cvs.sourceforge.net/tktoolkit/tk/generic/tkImgGIF.c?r1=1.40&r2=1.41
  - CVE-2008-0553

Show diffs side-by-side

added added

removed removed

Lines of Context:
generic/tkImgGIF.c
618
618
        return TCL_ERROR;
619
619
    }
620
620
 
 
621
    if (c > MAX_LWZ_BITS) {
 
622
        interp->result = "malformed image";
 
623
        return TCL_ERROR;
 
624
    }
 
625
 
621
626
    if (LWZReadByte(chan, 1, c) < 0) {
622
627
        interp->result = "format error in GIF image";
623
628
        return TCL_ERROR;