2 files changed, 29 insertions, 1 deletions
diff --git a/meta-oe/recipes-devtools/giflib/files/CVE-2019-15133.patch b/meta-oe/recipes-devtools/giflib/files/CVE-2019-15133.patch
new file mode 100644
index 0000000000..9957be82f3
--- /dev/null
+++ b/meta-oe/recipes-devtools/giflib/files/CVE-2019-15133.patch
@@ -0,0 +1,23 @@
+From 799eb6a3af8a3dd81e2429bf11a72a57e541f908 Mon Sep 17 00:00:00 2001
+From: "Eric S. Raymond" <esr@thyrsus.com>
+Date: Sun, 17 Mar 2019 12:37:21 -0400
+Subject: [PATCH] Address SF bug #119: MemorySanitizer: FPE on unknown address
+---
+ dgif_lib.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+Upstream-status: Backport [https://sourceforge.net/p/giflib/code/ci/799eb6a3af8a3dd81e2429bf11a72a57e541f908/]
+CVE: CVE-2019-15133
+--- a/lib/dgif_lib.c    2021-01-13 19:28:18.923493586 +0100
+++ b/lib/dgif_lib.c    2021-01-13 19:28:55.245863085 +0100
+@@ -1099,7 +1099,7 @@ DGifSlurp(GifFileType *GifFile)
+ 
+               sp = &GifFile->SavedImages[GifFile->ImageCount - 1];
+               /* Allocate memory for the image */
+-              if (sp->ImageDesc.Width < 0 && sp->ImageDesc.Height < 0 &&
+              if (sp->ImageDesc.Width <= 0 && sp->ImageDesc.Height <= 0 &&
+                       sp->ImageDesc.Width > (INT_MAX / sp->ImageDesc.Height)) {
+                   return GIF_ERROR;
+               }
diff --git a/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb b/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb
index 21fa352cdc..1871bab46e 100644
--- a/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb
+++ b/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb
@@ -3,7 +3,12 @@ SECTION = "libs"
 LICENSE = "MIT"
 LIC_FILES_CHKSUM = "file://COPYING;md5=ae11c61b04b2917be39b11f78d71519a"
-SRC_URI = "${SOURCEFORGE_MIRROR}/giflib/${BP}.tar.bz2"
+SRC_URI = " \
+    ${SOURCEFORGE_MIRROR}/giflib/${BP}.tar.bz2 \
+    file://CVE-2019-15133.patch \
+"
+CVE_PRODUCT = "giflib_project:giflib"
 inherit autotools

diff --git a/meta-oe/recipes-devtools/giflib/files/CVE-2019-15133.patch b/meta-oe/recipes-devtools/giflib/files/CVE-2019-15133.patch new file mode 100644 index 0000000000..9957be82f3 --- /dev/null +++ b/meta-oe/recipes-devtools/giflib/files/CVE-2019-15133.patch
@@ -0,0 +1,23 @@
		1	From 799eb6a3af8a3dd81e2429bf11a72a57e541f908 Mon Sep 17 00:00:00 2001
		2	From: "Eric S. Raymond" <esr@thyrsus.com>
		3	Date: Sun, 17 Mar 2019 12:37:21 -0400
		4	Subject: [PATCH] Address SF bug #119: MemorySanitizer: FPE on unknown address
		5
		6	---
		7	dgif_lib.c \| 2 +-
		8	1 file changed, 1 insertion(+), 1 deletion(-)
		9
		10	Upstream-status: Backport [https://sourceforge.net/p/giflib/code/ci/799eb6a3af8a3dd81e2429bf11a72a57e541f908/]
		11	CVE: CVE-2019-15133
		12
		13	--- a/lib/dgif_lib.c 2021-01-13 19:28:18.923493586 +0100
		14	+++ b/lib/dgif_lib.c 2021-01-13 19:28:55.245863085 +0100
		15	@@ -1099,7 +1099,7 @@ DGifSlurp(GifFileType *GifFile)
		16
		17	sp = &GifFile->SavedImages[GifFile->ImageCount - 1];
		18	/* Allocate memory for the image */
		19	- if (sp->ImageDesc.Width < 0 && sp->ImageDesc.Height < 0 &&
		20	+ if (sp->ImageDesc.Width <= 0 && sp->ImageDesc.Height <= 0 &&
		21	sp->ImageDesc.Width > (INT_MAX / sp->ImageDesc.Height)) {
		22	return GIF_ERROR;
		23	}


diff --git a/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb b/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb index 21fa352cdc..1871bab46e 100644 --- a/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb +++ b/meta-oe/recipes-devtools/giflib/giflib_5.1.4.bb
@@ -3,7 +3,12 @@ SECTION = "libs"
3	LICENSE = "MIT"	3	LICENSE = "MIT"
4	LIC_FILES_CHKSUM = "file://COPYING;md5=ae11c61b04b2917be39b11f78d71519a"	4	LIC_FILES_CHKSUM = "file://COPYING;md5=ae11c61b04b2917be39b11f78d71519a"
5		5
6	SRC_URI = "${SOURCEFORGE_MIRROR}/giflib/${BP}.tar.bz2"	6	SRC_URI = " \
		7	${SOURCEFORGE_MIRROR}/giflib/${BP}.tar.bz2 \
		8	file://CVE-2019-15133.patch \
		9	"
		10
		11	CVE_PRODUCT = "giflib_project:giflib"
7		12
8	inherit autotools	13	inherit autotools
9		14