aboutsummaryrefslogtreecommitdiffstats
path: root/textproc
diff options
context:
space:
mode:
authorerwin <erwin@FreeBSD.org>2005-01-28 21:51:10 +0800
committererwin <erwin@FreeBSD.org>2005-01-28 21:51:10 +0800
commit453f30b725e1852338ee02314d607b9528e78770 (patch)
treef532a32b97e5a47b5ccb54ced98b2c7445747009 /textproc
parent3161185589de7dba7b26460bdd3fffdf962905fb (diff)
downloadfreebsd-ports-gnome-453f30b725e1852338ee02314d607b9528e78770.tar.gz
freebsd-ports-gnome-453f30b725e1852338ee02314d607b9528e78770.tar.zst
freebsd-ports-gnome-453f30b725e1852338ee02314d607b9528e78770.zip
Fix latest and greatest xpdf vulnerability: makeFileKey2() buffer overflow
Diffstat (limited to 'textproc')
-rw-r--r--textproc/pdftohtml/Makefile2
-rw-r--r--textproc/pdftohtml/files/patch-src-XRef.cc12
2 files changed, 13 insertions, 1 deletions
diff --git a/textproc/pdftohtml/Makefile b/textproc/pdftohtml/Makefile
index d81af18b8b08..c8a0501f5c70 100644
--- a/textproc/pdftohtml/Makefile
+++ b/textproc/pdftohtml/Makefile
@@ -8,7 +8,7 @@
PORTNAME= pdftohtml
PORTVERSION= 0.36
-PORTREVISION= 1
+PORTREVISION= 2
CATEGORIES= textproc
MASTER_SITES= ${MASTER_SITE_SOURCEFORGE}
MASTER_SITE_SUBDIR= ${PORTNAME}
diff --git a/textproc/pdftohtml/files/patch-src-XRef.cc b/textproc/pdftohtml/files/patch-src-XRef.cc
new file mode 100644
index 000000000000..c352ea43448a
--- /dev/null
+++ b/textproc/pdftohtml/files/patch-src-XRef.cc
@@ -0,0 +1,12 @@
+--- xpdf/XRef.cc.orig Wed Jun 25 00:41:27 2003
++++ xpdf/XRef.cc Fri Jan 28 14:25:54 2005
+@@ -486,6 +486,9 @@
+ } else {
+ keyLength = 5;
+ }
++ if (keyLength > 16) {
++ keyLength = 16;
++ }
+ permFlags = permissions.getInt();
+ if (encVersion >= 1 && encVersion <= 2 &&
+ encRevision >= 2 && encRevision <= 3) {