File CVE-2025-59799.patch of Package ghostscript.41464

--- devices/vector/gdevpdfm.c.orig	2020-03-19 09:21:42.000000000 +0100
+++ devices/vector/gdevpdfm.c	2025-11-03 16:25:52.929570185 +0100
@@ -199,6 +199,8 @@ pdfmark_coerce_dest(gs_param_string *dst
 {
     const byte *data = dstr->data;
     uint size = dstr->size;
+    if (size > MAX_DEST_STRING)
+        return_error(gs_error_limitcheck);
     if (size == 0 || data[0] != '(')
         return 0;
     /****** HANDLE ESCAPES ******/
@@ -846,6 +848,8 @@ pdfmark_put_ao_pairs(gx_device_pdf * pde
             char buf[30];
             int d0, d1;
 
+	    if (Action[1].size > 29)
+                return_error(gs_error_rangecheck);
             memcpy(buf, Action[1].data, Action[1].size);
             buf[Action[1].size] = 0;
             if (sscanf(buf, "%d %d R", &d0, &d1) == 2)