[pkgsrc/trunk]: pkgsrc/devel/devIL Add patch for CVE-2009-3994: buffer overfl...

[tnn <tnn%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/e5f29d194864
branches:  trunk
changeset: 568489:e5f29d194864
user:      tnn <tnn%pkgsrc.org@localhost>
date:      Tue Dec 15 10:29:35 2009 +0000

description:
Add patch for CVE-2009-3994: buffer overflow in DICOM reader
Bump rev.

diffstat:

 devel/devIL/Makefile         |   3 ++-
 devel/devIL/distinfo         |   3 ++-
 devel/devIL/patches/patch-ab |  17 +++++++++++++++++
 3 files changed, 21 insertions(+), 2 deletions(-)

diffs (47 lines):

diff -r bb242e55f2f5 -r e5f29d194864 devel/devIL/Makefile
--- a/devel/devIL/Makefile      Tue Dec 15 08:29:35 2009 +0000
+++ b/devel/devIL/Makefile      Tue Dec 15 10:29:35 2009 +0000
@@ -1,8 +1,9 @@
-# $NetBSD: Makefile,v 1.23 2009/10/30 20:02:54 joerg Exp $
+# $NetBSD: Makefile,v 1.24 2009/12/15 10:29:35 tnn Exp $
 #
 
 DISTNAME=      DevIL-${DEVIL_VERSION}
 PKGNAME=       ${DISTNAME:S/D/d/}
+PKGREVISION=   1
 CATEGORIES=    devel
 MASTER_SITES=  ${MASTER_SITE_SOURCEFORGE:=openil/}
 
diff -r bb242e55f2f5 -r e5f29d194864 devel/devIL/distinfo
--- a/devel/devIL/distinfo      Tue Dec 15 08:29:35 2009 +0000
+++ b/devel/devIL/distinfo      Tue Dec 15 10:29:35 2009 +0000
@@ -1,6 +1,7 @@
-$NetBSD: distinfo,v 1.5 2009/10/30 20:02:54 joerg Exp $
+$NetBSD: distinfo,v 1.6 2009/12/15 10:29:35 tnn Exp $
 
 SHA1 (DevIL-1.7.8.tar.gz) = bc27e3e830ba666a3af03548789700d10561fcb1
 RMD160 (DevIL-1.7.8.tar.gz) = a3cdb14fcca5e75ada240a53cbdc3e749a759da5
 Size (DevIL-1.7.8.tar.gz) = 2051993 bytes
 SHA1 (patch-aa) = 2784234ee79ada44f04219c5f49d5ea2c9e6bf4c
+SHA1 (patch-ab) = 995f402fa98cbfe96d43b98f6c409e484a53bf09
diff -r bb242e55f2f5 -r e5f29d194864 devel/devIL/patches/patch-ab
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/devel/devIL/patches/patch-ab      Tue Dec 15 10:29:35 2009 +0000
@@ -0,0 +1,17 @@
+$NetBSD: patch-ab,v 1.1 2009/12/15 10:29:35 tnn Exp $
+
+--- src-IL/src/il_dicom.c.orig 2009-03-08 07:10:09.000000000 +0000
++++ src-IL/src/il_dicom.c
+@@ -427,9 +427,11 @@ ILboolean GetUID(ILubyte *UID)
+               return IL_FALSE;
+ 
+       ValLen = GetLittleUShort();
++      if (ValLen > 64)
++              return IL_FALSE;
+       if (iread(UID, ValLen, 1) != 1)
+               return IL_FALSE;
+-      UID[64] = 0;  // Just to make sure that our string is terminated.
++      UID[ValLen] = 0;  // Just to make sure that our string is terminated.
+ 
+       return IL_TRUE;
+ }