File tkimg-CVE-2008-0553.patch of Package tkimg - openSUSE Build Service

File tkimg-CVE-2008-0553.patch of Package tkimg

--- gif/gif.c
+++ gif/gif.c
@@ -764,6 +764,12 @@
 		Tcl_PosixError(interp), (char *) NULL);
 	return TCL_ERROR;
     }
+
+    if (initialCodeSize > MAX_LWZ_BITS) {
+	Tcl_SetResult(interp, "malformed image", TCL_STATIC);
+	return TCL_ERROR;
+    }
+
     if (transparent!=-1) {
 	cmap[transparent][CM_RED] = 0;
 	cmap[transparent][CM_GREEN] = 0;

openSUSE Build Service is sponsored by