From 71c1212ed1fbff6fc1e7b70166de732ac6fff7c9 Mon Sep 17 00:00:00 2001
From: Rong-En Fan <rafan@FreeBSD.org>
Date: Sun, 2 Mar 2008 12:43:31 +0000
Subject: - Fix security issue

PR:		ports/121283
Security:	CVE-2008-0411
Submitted by:	bf <bf2006a at yahoo.com>
---
 print/ghostscript-gpl/Makefile.inc            |  2 +-
 print/ghostscript-gpl/files/patch-src__zicc.c | 12 ++++++++++++
 2 files changed, 13 insertions(+), 1 deletion(-)
 create mode 100644 print/ghostscript-gpl/files/patch-src__zicc.c

(limited to 'print/ghostscript-gpl')

diff --git a/print/ghostscript-gpl/Makefile.inc b/print/ghostscript-gpl/Makefile.inc
index c51a93766c58..4b02a4f47441 100644
--- a/print/ghostscript-gpl/Makefile.inc
+++ b/print/ghostscript-gpl/Makefile.inc
@@ -1,5 +1,5 @@
 # $FreeBSD$
 
 GS_VERSION=	8.61
-GS_REVISION=	1
+GS_REVISION=	2
 GS_EPOCH=	0
diff --git a/print/ghostscript-gpl/files/patch-src__zicc.c b/print/ghostscript-gpl/files/patch-src__zicc.c
new file mode 100644
index 000000000000..a5ddf3a4ff0d
--- /dev/null
+++ b/print/ghostscript-gpl/files/patch-src__zicc.c
@@ -0,0 +1,12 @@
+--- src/zicc.c
++++ src/zicc.c	2008-02-05 16:11:59.000000000 +0000
+@@ -77,6 +77,9 @@ zseticcspace(i_ctx_t * i_ctx_p)
+     dict_find_string(op, "N", &pnval);
+     ncomps = pnval->value.intval;
+ 
++    if (2*ncomps > sizeof(range_buff)/sizeof(float))
++	return_error(e_rangecheck);
++
+     /* verify the DataSource entry */
+     if (dict_find_string(op, "DataSource", &pstrmval) <= 0)
+         return_error(e_undefined);
-- 
cgit v1.2.3