libs/giflib/patches/020-CVE-2023-39742.patch

   1 Description: Fix segmentation faults due to non correct checking for args
   2 Author: David Suárez <david.sephirot@gmail.com>
   3 Origin: vendor
   4 Bug: https://sourceforge.net/p/giflib/bugs/153/
   5 Bug-Debian: https://bugs.debian.org/715963
   6 Bug-Debian: https://bugs.debian.org/715964
   7 Bug-Debian: https://bugs.debian.org/715967
   8 Last-Update: 2020-12-20
   9
  10 --- a/getarg.c
  11 +++ b/getarg.c
  12 @@ -307,6 +307,12 @@ GAGetParmeters(void *Parameters[],
  13      int i = 0, ScanRes;
  14
  15      while (!(ISSPACE(CtrlStrCopy[i]))) {
  16 +
  17 +        if ((*argv) == argv_end) {
  18 +            GAErrorToken = Option;
  19 +            return CMD_ERR_NumRead;
  20 +        }
  21 +
  22          switch (CtrlStrCopy[i + 1]) {
  23            case 'd':    /* Get signed integers. */
  24                ScanRes = sscanf(*((*argv)++), "%d",