summaryrefslogtreecommitdiff
path: root/graphics/xli/patch-ae
diff options
context:
space:
mode:
Diffstat (limited to 'graphics/xli/patch-ae')
-rw-r--r--graphics/xli/patch-ae16
1 files changed, 16 insertions, 0 deletions
diff --git a/graphics/xli/patch-ae b/graphics/xli/patch-ae
new file mode 100644
index 0000000000..78be8b3115
--- /dev/null
+++ b/graphics/xli/patch-ae
@@ -0,0 +1,16 @@
+$NetBSD: patch-ae,v 1.1 2005/10/30 17:58:58 salo Exp $
+
+Security fix for CVE-2005-3178, from Debian.
+
+--- reduce.c.orig 1999-10-25 04:15:02.000000000 +0200
++++ reduce.c 2005-10-30 18:49:53.000000000 +0100
+@@ -178,7 +178,8 @@
+ /* get destination image */
+ depth = colorsToDepth(OutColors);
+ new_image = newRGBImage(image->width, image->height, depth);
+- sprintf(buf, "%s (%d colors)", image->title, OutColors);
++ snprintf(buf, BUFSIZ, "%s (%d colors)", image->title, OutColors);
++ buf[BUFSIZ-1] = '\0';
+ new_image->title = dupString(buf);
+ new_image->gamma = image->gamma;
+