Overview

File CVE-2018-11440.patch of Package liblouis.24590

From 4417bad83df4481ed58419b28c5c91b9649e2a86 Mon Sep 17 00:00:00 2001
From: Christian Egli <christian.egli@sbs.ch>
Date: Wed, 30 May 2018 16:47:10 +0200
Subject: [PATCH] Fix another buffer overflow in table parsing reported by
 Henri Salo

Fixes #575 and CVE-2018-11440

Rebased by Mike Gorse <mgorse@suse.com>
---
diff -urp liblouis-3.3.0.orig/liblouis/compileTranslationTable.c liblouis-3.3.0/liblouis/compileTranslationTable.c
--- liblouis-3.3.0.orig/liblouis/compileTranslationTable.c	2017-09-04 09:40:13.000000000 -0500
+++ liblouis-3.3.0/liblouis/compileTranslationTable.c	2018-08-07 16:41:42.583413046 -0500
@@ -1440,6 +1440,10 @@ parseChars (FileInfo * nested,
 	{
 	  if (in >= MAXSTRING)
 	    break;
+			if (out >= MAXSTRING) {
+				result->length = lastOutSize;
+				return 1;
+			}
 	  if (token->chars[in] < 128 || (token->chars[in] & 0x0040))
 	    {
 	      compileWarning (nested, "invalid UTF-8. Assuming Latin-1.");
openSUSE Build Service is sponsored by
Places