File r1845-Correct-fix-for-CVE-2017-6840.patch of Package podofo.23799

------------------------------------------------------------------------
r1845 | aja_ | 2017-05-08 15:33:17 +0200 (lun, 08 may 2017) | 2 lines

Correct fix for CVE-2017-6840: Too strict check for given arguments.


Index: tools/podofocolor/colorchanger.cpp
===================================================================
--- tools/podofocolor/colorchanger.cpp	(revision 1844)
+++ tools/podofocolor/colorchanger.cpp	(revision 1845)
@@ -181,7 +181,7 @@
             int nNumArgs = pInfo->nNumArguments;
             EPdfColorSpace eColorSpace;
 
-            if( args.size() != static_cast<size_t>( pInfo->nNumArguments ) )
+            if( pInfo->nNumArguments > 0 && args.size() != static_cast<size_t>( pInfo->nNumArguments ) )
             {
                 std::ostringstream oss;
                 oss << "Expected " << pInfo->nNumArguments << " argument(s) for keyword '" << pszKeyword << "', but " << args.size() << " given instead.";

------------------------------------------------------------------------

Places

File r1845-Correct-fix-for-CVE-2017-6840.patch of Package podofo.23799

Places