From a0e31f12714ee0e23597e4376bf14ae77232a1d8 Mon Sep 17 00:00:00 2001
From: CoprDistGit <infra@openeuler.org>
Date: Mon, 5 Aug 2024 01:47:41 +0000
Subject: automatic import of dcraw

---
 dcraw-CVE-2017-14608.patch | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 dcraw-CVE-2017-14608.patch

(limited to 'dcraw-CVE-2017-14608.patch')

diff --git a/dcraw-CVE-2017-14608.patch b/dcraw-CVE-2017-14608.patch
new file mode 100644
index 0000000..8f7de24
--- /dev/null
+++ b/dcraw-CVE-2017-14608.patch
@@ -0,0 +1,21 @@
+diff -urNp old/dcraw.c new/dcraw.c
+--- old/dcraw.c	2018-07-11 10:53:51.141803505 +0200
++++ new/dcraw.c	2018-07-11 11:30:08.850528389 +0200
+@@ -2627,8 +2627,15 @@ void CLASS kodak_65000_load_raw()
+       len = MIN (256, width-col);
+       ret = kodak_65000_decode (buf, len);
+       for (i=0; i < len; i++)
+-	if ((RAW(row,col+i) =	curve[ret ? buf[i] :
+-		(pred[i & 1] += buf[i])]) >> 12) derror();
++	{
++	int idx = ret ? buf[i] : (pred[i & 1] += buf[i]);
++	if(idx >=0 && idx <= 0xffff)
++	 {
++	   if ((RAW(row,col+i) = curve[idx]) >> 12) derror();
++         }
++	 else
++	   derror();
++      }	
+     }
+ }
+ 
-- 
cgit v1.2.3