Fix a buffer overflow which can be triggered by

a large /Encrypt /Length keyLength value.  Bump PORTREVISION.

Obtained from:	ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.00pl3.patch
CVE Name:	CAN-2005-0064

2 files changed, 15 insertions, 1 deletions

diff --git a/print/teTeX-base/Makefile b/print/teTeX-base/Makefile
index d9db705208e4..de463a5fc7c4 100644
--- a/print/teTeX-base/Makefile
+++ b/print/teTeX-base/Makefile
@@ -7,7 +7,7 @@
 
 PORTNAME=	teTeX-base
 PORTVERSION=	2.0.2
-PORTREVISION=	8
+PORTREVISION=	9
 CATEGORIES=	print
 MASTER_SITES=	ftp://sunsite.informatik.rwth-aachen.de/pub/comp/tex/teTeX/2.0/distrib/ \
 		${MASTER_SITE_TEX_CTAN}
diff --git a/print/teTeX-base/files/patch-CAN-2005-0064 b/print/teTeX-base/files/patch-CAN-2005-0064
new file mode 100644
index 000000000000..493d22e6659c
--- /dev/null
+++ b/print/teTeX-base/files/patch-CAN-2005-0064
@@ -0,0 +1,14 @@
+*** libs/xpdf/xpdf/XRef.cc.orig	Wed Jan 12 17:10:53 2005
+--- libs/xpdf/xpdf/XRef.cc	Wed Jan 12 17:11:22 2005
+***************
+*** 793,798 ****
+--- 793,801 ----
+  	} else {
+  	  keyLength = 5;
+  	}
++ 	if (keyLength > 16) {
++ 	  keyLength = 16;
++ 	}
+  	permFlags = permissions.getInt();
+  	if (encVersion >= 1 && encVersion <= 2 &&
+  	    encRevision >= 2 && encRevision <= 3) {