File CVE-2018-11440.patch of Package liblouis.24590
From 4417bad83df4481ed58419b28c5c91b9649e2a86 Mon Sep 17 00:00:00 2001
From: Christian Egli <christian.egli@sbs.ch>
Date: Wed, 30 May 2018 16:47:10 +0200
Subject: [PATCH] Fix another buffer overflow in table parsing reported by
Henri Salo
Fixes #575 and CVE-2018-11440
Rebased by Mike Gorse <mgorse@suse.com>
---
diff -urp liblouis-3.3.0.orig/liblouis/compileTranslationTable.c liblouis-3.3.0/liblouis/compileTranslationTable.c
--- liblouis-3.3.0.orig/liblouis/compileTranslationTable.c 2017-09-04 09:40:13.000000000 -0500
+++ liblouis-3.3.0/liblouis/compileTranslationTable.c 2018-08-07 16:41:42.583413046 -0500
@@ -1440,6 +1440,10 @@ parseChars (FileInfo * nested,
{
if (in >= MAXSTRING)
break;
+ if (out >= MAXSTRING) {
+ result->length = lastOutSize;
+ return 1;
+ }
if (token->chars[in] < 128 || (token->chars[in] & 0x0040))
{
compileWarning (nested, "invalid UTF-8. Assuming Latin-1.");