Fix potential out of bounds copy from the string.

author: Andrey A. Chernov <ache@FreeBSD.org> 2004-05-02 21:24:14 +0000
committer: Andrey A. Chernov <ache@FreeBSD.org> 2004-05-02 21:24:14 +0000
commit: 785843deac1e6121fef1205c4b455c38c6bb6e40 (patch)
tree: c5fb7f0c31c2b4a04995691dd61c9f6932b3b9a0 /graphics/png
parent: 6c46a157d41ffd995c3e921e0852c3ba3c97bfe4 (diff)
download: ports-785843deac1e6121fef1205c4b455c38c6bb6e40.tar.gz
ports-785843deac1e6121fef1205c4b455c38c6bb6e40.zip
2 files changed, 20 insertions, 1 deletions
diff --git a/graphics/png/Makefile b/graphics/png/Makefile
index b8387d83f7b3..f3c9cdadc924 100644
--- a/graphics/png/Makefile
+++ b/graphics/png/Makefile
@@ -7,7 +7,7 @@
 
 PORTNAME=	png
 PORTVERSION=    1.2.5
-PORTREVISION=   3
+PORTREVISION=   4
 CATEGORIES=	graphics
 MASTER_SITES=	http://www.libpng.org/pub/png/src/ \
 		ftp://swrinde.nde.swri.edu/pub/png/src/ \
diff --git a/graphics/png/files/patch-ac b/graphics/png/files/patch-ac
new file mode 100644
index 000000000000..c43f263aec03
--- /dev/null
+++ b/graphics/png/files/patch-ac
@@ -0,0 +1,19 @@
+--- pngerror.c.orig	Thu Oct  3 15:32:27 2002
++++ pngerror.c	Mon May  3 01:18:27 2004
+@@ -135,10 +135,14 @@
+       buffer[iout] = 0;
+    else
+    {
++      int len = strlen(error_message);
++
++      if (len > 63)
++	 len = 63;
+       buffer[iout++] = ':';
+       buffer[iout++] = ' ';
+-      png_memcpy(buffer+iout, error_message, 64);
+-      buffer[iout+63] = 0;
++      png_memcpy(buffer+iout, error_message, len);
++      buffer[iout+len] = 0;
+    }
+ }
+
author	Andrey A. Chernov <ache@FreeBSD.org>	2004-05-02 21:24:14 +0000
committer	Andrey A. Chernov <ache@FreeBSD.org>	2004-05-02 21:24:14 +0000
commit	785843deac1e6121fef1205c4b455c38c6bb6e40 (patch)
tree	c5fb7f0c31c2b4a04995691dd61c9f6932b3b9a0 /graphics/png
parent	6c46a157d41ffd995c3e921e0852c3ba3c97bfe4 (diff)
download	ports-785843deac1e6121fef1205c4b455c38c6bb6e40.tar.gz ports-785843deac1e6121fef1205c4b455c38c6bb6e40.zip