Commits

Davide Gerhard authored and Frank Schima committed 9b015e933c3 
fribidi: fix CVE-2019-18397 - Stack buffer overflow

see https://seclists.org/oss-sec/2019/q4/59
No tags
ab8f2c08a0c
master

textproc/fribidi/files/CVE-2019-18397.patch

Added
1 +From 034c6e9a1d296286305f4cfd1e0072b879f52568 Mon Sep 17 00:00:00 2001
2 +From: Dov Grobgeld <dov.grobgeld@gmail.com>
3 +Date: Thu, 24 Oct 2019 09:37:29 +0300
4 +Subject: [PATCH] Truncate isolate_level to FRIBIDI_BIDI_MAX_EXPLICIT_LEVEL
5 +
6 +---
7 + lib/fribidi-bidi.c | 4 +++-
8 + 1 file changed, 3 insertions(+), 1 deletion(-)
9 +
10 +diff --git a/lib/fribidi-bidi.c b/lib/fribidi-bidi.c
11 +index 6c84392..d384878 100644
12 +--- lib/fribidi-bidi.c
13 ++++ lib/fribidi-bidi.c
14 +@@ -747,7 +747,9 @@ fribidi_get_par_embedding_levels_ex (
15 + }
16 +
17 + RL_LEVEL (pp) = level;
18 +- RL_ISOLATE_LEVEL (pp) = isolate_level++;
19 ++ RL_ISOLATE_LEVEL (pp) = isolate_level;
20 ++ if (isolate_level < FRIBIDI_BIDI_MAX_EXPLICIT_LEVEL-1)
21 ++ isolate_level++;
22 + base_level_per_iso_level[isolate_level] = new_level;
23 +
24 + if (!FRIBIDI_IS_NEUTRAL (override))

Everything looks good. We'll let you know here if there's anything you should know about.

Add shortcut