From 02508190e44cf9334e41b7a1bf1b21bd0b80ed4f Mon Sep 17 00:00:00 2001
From: Yen-Ming Lee <leeym@FreeBSD.org>
Date: Thu, 11 Dec 2014 16:59:28 +0000
Subject: - add patch to prevent buffer overflow - bump PORTREVISION

PR:		195558
Submitted by:	fk@fabiankeil.de
---
 textproc/antiword/files/patch-wordole.c | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 textproc/antiword/files/patch-wordole.c

(limited to 'textproc/antiword/files/patch-wordole.c')

diff --git a/textproc/antiword/files/patch-wordole.c b/textproc/antiword/files/patch-wordole.c
new file mode 100644
index 000000000000..f3ecae43ba92
--- /dev/null
+++ b/textproc/antiword/files/patch-wordole.c
@@ -0,0 +1,14 @@
+--- wordole.c
++++ wordole.c
+@@ -259,6 +259,11 @@ bGetPPS(FILE *pFile,
+ 		}
+ 		tNameSize = (size_t)usGetWord(0x40, aucBytes);
+ 		tNameSize = (tNameSize + 1) / 2;
++		if (tNameSize >= sizeof(atPPSlist[0].szName)) {
++			werr(0, "PPS %d appears to be invalid.", iIndex);
++			atPPSlist = xfree(atPPSlist);
++			return FALSE;
++		}
+ 		vName2String(atPPSlist[iIndex].szName, aucBytes, tNameSize);
+ 		atPPSlist[iIndex].ucType = ucGetByte(0x42, aucBytes);
+ 		if (atPPSlist[iIndex].ucType == 5) {
-- 
cgit v1.2.3