From ec030379984fe4becf3f014e31e66e2b25539039 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Mon, 31 May 2021 14:07:41 +0200 Subject: sync with Fedora Update to 2.4.0 Apply proposed patches for CVE-2021-29338 and a heap buffer overflow (#1957616) --- openjpeg2_CVE-2020-27814.patch | 16 ---------------- 1 file changed, 16 deletions(-) delete mode 100644 openjpeg2_CVE-2020-27814.patch (limited to 'openjpeg2_CVE-2020-27814.patch') diff --git a/openjpeg2_CVE-2020-27814.patch b/openjpeg2_CVE-2020-27814.patch deleted file mode 100644 index cbb8007..0000000 --- a/openjpeg2_CVE-2020-27814.patch +++ /dev/null @@ -1,16 +0,0 @@ -diff -rupN --no-dereference openjpeg-2.3.1/src/lib/openjp2/tcd.c openjpeg-2.3.1-new/src/lib/openjp2/tcd.c ---- openjpeg-2.3.1/src/lib/openjp2/tcd.c 2020-11-28 23:29:38.701863373 +0100 -+++ openjpeg-2.3.1-new/src/lib/openjp2/tcd.c 2020-11-28 23:29:38.704863383 +0100 -@@ -1235,9 +1235,11 @@ static OPJ_BOOL opj_tcd_code_block_enc_a - - /* +1 is needed for https://github.com/uclouvain/openjpeg/issues/835 */ - /* and actually +2 required for https://github.com/uclouvain/openjpeg/issues/982 */ -+ /* and +7 for https://github.com/uclouvain/openjpeg/issues/1283 (-M 3) */ -+ /* and +26 for https://github.com/uclouvain/openjpeg/issues/1283 (-M 7) */ - /* TODO: is there a theoretical upper-bound for the compressed code */ - /* block size ? */ -- l_data_size = 2 + (OPJ_UINT32)((p_code_block->x1 - p_code_block->x0) * -+ l_data_size = 26 + (OPJ_UINT32)((p_code_block->x1 - p_code_block->x0) * - (p_code_block->y1 - p_code_block->y0) * (OPJ_INT32)sizeof(OPJ_UINT32)); - - if (l_data_size > p_code_block->data_size) { -- cgit