Overview

File fribidi-CVE-2022-25309.patch of Package fribidi.24295

From f22593b82b5d1668d1997dbccd10a9c31ffea3b3 Mon Sep 17 00:00:00 2001
From: Dov Grobgeld <dov.grobgeld@gmail.com>
Date: Fri, 25 Mar 2022 09:09:49 +0300
Subject: [PATCH 2/4] Protected against garbage in the CapRTL encoder

Backported by Mike Gorse <mgorse@suse.com>
---
diff -urp fribidi-0.19.6.orig/charset/fribidi-char-sets-cap-rtl.c fribidi-0.19.6/charset/fribidi-char-sets-cap-rtl.c
--- fribidi-0.19.6.orig/charset/fribidi-char-sets-cap-rtl.c	2012-12-02 10:25:40.000000000 -0600
+++ fribidi-0.19.6/charset/fribidi-char-sets-cap-rtl.c	2022-05-13 14:16:45.968951941 -0500
@@ -226,7 +226,12 @@ fribidi_cap_rtl_to_unicode (
 	    }
 	}
       else
-	us[j++] = caprtl_to_unicode[(int) s[i]];
+      {
+        if ((int)s[i] < 0)
+          us[j++] = '?';
+        else
+          us[j++] = caprtl_to_unicode[(int) s[i]];
+      }
     }
 
   return j;
Only in fribidi-0.19.6.orig/lib: fribidi-deprecated.c.orig
openSUSE Build Service is sponsored by
Places