From a01a34c21389388dea98b50caa6fdb4e2f9c9745 Mon Sep 17 00:00:00 2001 From: "Ralf S. Engelschall" Date: Wed, 15 Jan 2003 13:50:46 +0000 Subject: [PATCH] fix security bug --- png/png.patch | 24 ++++++++++++++++++++++++ png/png.spec | 4 +++- 2 files changed, 27 insertions(+), 1 deletion(-) create mode 100644 png/png.patch diff --git a/png/png.patch b/png/png.patch new file mode 100644 index 0000000000..c4f0aea28a --- /dev/null +++ b/png/png.patch @@ -0,0 +1,24 @@ +--- pngrtran.c.orig Wed Oct 2 20:20:24 2002 ++++ pngrtran.c Wed Jan 15 11:30:23 2003 +@@ -1965,8 +1965,8 @@ + /* This changes the data from RRGGBB to RRGGBBXX */ + if (flags & PNG_FLAG_FILLER_AFTER) + { +- png_bytep sp = row + (png_size_t)row_width * 3; +- png_bytep dp = sp + (png_size_t)row_width; ++ png_bytep sp = row + (png_size_t)row_width * 6; ++ png_bytep dp = sp + (png_size_t)row_width * 2; + for (i = 1; i < row_width; i++) + { + *(--dp) = hi_filler; +@@ -1987,8 +1987,8 @@ + /* This changes the data from RRGGBB to XXRRGGBB */ + else + { +- png_bytep sp = row + (png_size_t)row_width * 3; +- png_bytep dp = sp + (png_size_t)row_width; ++ png_bytep sp = row + (png_size_t)row_width * 6; ++ png_bytep dp = sp + (png_size_t)row_width * 2; + for (i = 0; i < row_width; i++) + { + *(--dp) = *(--sp); diff --git a/png/png.spec b/png/png.spec index 4f21047e58..7479f8bdd3 100644 --- a/png/png.spec +++ b/png/png.spec @@ -33,10 +33,11 @@ Distribution: OpenPKG [BASE] Group: Graphics License: BSD Version: 1.2.5 -Release: 20021003 +Release: 20030115 # list of sources Source0: http://osdn.dl.sourceforge.net/sourceforge/libpng/libpng-%{version}.tar.gz +Patch0: png.patch # build information Prefix: %{l_prefix} @@ -53,6 +54,7 @@ AutoReqProv: no %prep %setup -q -n libpng-%{version} + %patch -p0 %build %{l_make} %{l_mflags} \