[Libreoffice-commits] .: Branch 'libreoffice-3-4' - icu/CVE-2011-4599.patch icu/makefile.mk
Caolán McNamara
caolan at kemper.freedesktop.org
Mon Dec 12 05:29:04 PST 2011
icu/CVE-2011-4599.patch | 20 ++++++++++++++++++++
icu/makefile.mk | 3 ++-
2 files changed, 22 insertions(+), 1 deletion(-)
New commits:
commit 81252dd483c84f06072b041e0dd384bd10cb5ac4
Author: Caolán McNamara <caolanm at redhat.com>
Date: Mon Dec 12 13:28:36 2011 +0000
Resolves: CVE-2011-4599
diff --git a/icu/CVE-2011-4599.patch b/icu/CVE-2011-4599.patch
new file mode 100644
index 0000000..fd8b121
--- /dev/null
+++ b/icu/CVE-2011-4599.patch
@@ -0,0 +1,20 @@
+--- misc/icu/source/source/common/uloc.c
++++ misc/build/icu/source/common/uloc.c
+@@ -1797,7 +1797,7 @@
+ int32_t variantLen = _deleteVariant(variant, uprv_min(variantSize, (nameCapacity-len)), variantToCompare, n);
+ len -= variantLen;
+ if (variantLen > 0) {
+- if (name[len-1] == '_') { /* delete trailing '_' */
++ if (len > 0 && name[len-1] == '_') { /* delete trailing '_' */
+ --len;
+ }
+ addKeyword = VARIANT_MAP[j].keyword;
+@@ -1805,7 +1805,7 @@
+ break;
+ }
+ }
+- if (name[len-1] == '_') { /* delete trailing '_' */
++ if (len > 0 && len <= nameCapacity && name[len-1] == '_') { /* delete trailing '_' */
+ --len;
+ }
+ }
diff --git a/icu/makefile.mk b/icu/makefile.mk
index dbbd4c0..6078896 100644
--- a/icu/makefile.mk
+++ b/icu/makefile.mk
@@ -51,7 +51,8 @@ PATCH_FILES=\
icu4c-aix.patch \
icu4c-4_4_2-wchar_t.patch \
icu4c-warnings.patch \
- icu4c-escapespace.patch
+ icu4c-escapespace.patch \
+ CVE-2011-4599.patch
.IF "$(GUI)"=="UNX"
More information about the Libreoffice-commits
mailing list