1 files changed, 37 insertions, 0 deletions
diff --git a/meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch b/meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch
new file mode 100644
index 0000000000..beade79eef
--- /dev/null
+++ b/meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch
@@ -0,0 +1,37 @@
+From 9daf042fd7bb19e93388d89d9686a2fa4496f382 Mon Sep 17 00:00:00 2001
+From: Chris Liddell <chris.liddell@artifex.com>
+Date: Mon, 24 Aug 2020 09:24:31 +0100
+Subject: [PATCH] Coverity 361429: move "break" to correct place.
+We had to add the outputfile to the "control" file permission list (as well
+as write), but for the "pipe" case, I accidentally added the call after the
+break out of loop that checks for a pipe.
+CVE: CVE-2021-3781
+Upstream-Status: Backport:
+https://git.ghostscript.com/?p=ghostpdl.git;a=commit;f=base/gslibctx.c;h=9daf042fd7bb19e93388d89d9686a2fa4496f382
+Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
+---
+ base/gslibctx.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+diff --git a/base/gslibctx.c b/base/gslibctx.c
+index ff8fc895e..63dfbe2e0 100644
+--- a/base/gslibctx.c
+++ b/base/gslibctx.c
+@@ -668,10 +668,10 @@ gs_add_outputfile_control_path(gs_memory_t *mem, const char *fname)
+            code = gs_add_control_path(mem, gs_permit_file_writing, f);
+            if (code < 0)
+                return code;
+-           break;
+            code = gs_add_control_path(mem, gs_permit_file_control, f);
+            if (code < 0)
+                return code;
+           break;
+         }
+         if (!IS_WHITESPACE(f[i]))
+             break;
+-- 
+2.25.1

diff --git a/meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch b/meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch new file mode 100644 index 0000000000..beade79eef --- /dev/null +++ b/meta/recipes-extended/ghostscript/ghostscript/CVE-2021-3781_2.patch
@@ -0,0 +1,37 @@
	1	From 9daf042fd7bb19e93388d89d9686a2fa4496f382 Mon Sep 17 00:00:00 2001
	2	From: Chris Liddell <chris.liddell@artifex.com>
	3	Date: Mon, 24 Aug 2020 09:24:31 +0100
	4	Subject: [PATCH] Coverity 361429: move "break" to correct place.
	5
	6	We had to add the outputfile to the "control" file permission list (as well
	7	as write), but for the "pipe" case, I accidentally added the call after the
	8	break out of loop that checks for a pipe.
	9
	10	CVE: CVE-2021-3781
	11
	12	Upstream-Status: Backport:
	13	https://git.ghostscript.com/?p=ghostpdl.git;a=commit;f=base/gslibctx.c;h=9daf042fd7bb19e93388d89d9686a2fa4496f382
	14
	15	Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
	16	---
	17	base/gslibctx.c \| 2 +-
	18	1 file changed, 1 insertion(+), 1 deletion(-)
	19
	20	diff --git a/base/gslibctx.c b/base/gslibctx.c
	21	index ff8fc895e..63dfbe2e0 100644
	22	--- a/base/gslibctx.c
	23	+++ b/base/gslibctx.c
	24	@@ -668,10 +668,10 @@ gs_add_outputfile_control_path(gs_memory_t mem, const char fname)
	25	code = gs_add_control_path(mem, gs_permit_file_writing, f);
	26	if (code < 0)
	27	return code;
	28	- break;
	29	code = gs_add_control_path(mem, gs_permit_file_control, f);
	30	if (code < 0)
	31	return code;
	32	+ break;
	33	}
	34	if (!IS_WHITESPACE(f[i]))
	35	break;
	36	--
	37	2.25.1