diff options
Diffstat (limited to 'meta/recipes-support/fribidi/fribidi/CVE-2022-25309.patch')
-rw-r--r-- | meta/recipes-support/fribidi/fribidi/CVE-2022-25309.patch | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/meta/recipes-support/fribidi/fribidi/CVE-2022-25309.patch b/meta/recipes-support/fribidi/fribidi/CVE-2022-25309.patch new file mode 100644 index 0000000000..0efba3d05c --- /dev/null +++ b/meta/recipes-support/fribidi/fribidi/CVE-2022-25309.patch | |||
@@ -0,0 +1,31 @@ | |||
1 | From f22593b82b5d1668d1997dbccd10a9c31ffea3b3 Mon Sep 17 00:00:00 2001 | ||
2 | From: Dov Grobgeld <dov.grobgeld@gmail.com> | ||
3 | Date: Fri, 25 Mar 2022 09:09:49 +0300 | ||
4 | Subject: [PATCH] Protected against garbage in the CapRTL encoder | ||
5 | |||
6 | CVE: CVE-2022-25309 | ||
7 | Upstream-Status: Backport [https://github.com/fribidi/fribidi/commit/f22593b82b5d1668d1997dbccd10a9c31ffea3b3] | ||
8 | Signed-off-by: Pawan Badganchi <Pawan.Badganchi@kpit.com> | ||
9 | |||
10 | --- | ||
11 | lib/fribidi-char-sets-cap-rtl.c | 7 ++++++- | ||
12 | 1 file changed, 6 insertions(+), 1 deletion(-) | ||
13 | |||
14 | diff --git a/lib/fribidi-char-sets-cap-rtl.c b/lib/fribidi-char-sets-cap-rtl.c | ||
15 | index b0c0e4a..f74e010 100644 | ||
16 | --- a/lib/fribidi-char-sets-cap-rtl.c | ||
17 | +++ b/lib/fribidi-char-sets-cap-rtl.c | ||
18 | @@ -232,7 +232,12 @@ fribidi_cap_rtl_to_unicode ( | ||
19 | } | ||
20 | } | ||
21 | else | ||
22 | - us[j++] = caprtl_to_unicode[(int) s[i]]; | ||
23 | + { | ||
24 | + if ((int)s[i] < 0) | ||
25 | + us[j++] = '?'; | ||
26 | + else | ||
27 | + us[j++] = caprtl_to_unicode[(int) s[i]]; | ||
28 | + } | ||
29 | } | ||
30 | |||
31 | return j; | ||