mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-07-15 16:07:26 +00:00
poppler: fix CVE-2025-32364
A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an application to crash when handling malformed inputs associated with INT_MIN. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-32364 Upstream patch: https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3 Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
This commit is contained in:
committed by
Armin Kuster
parent
bc6cafa570
commit
7c900fa798
@@ -0,0 +1,28 @@
|
|||||||
|
From d87bc726c7cc98f8c26b60ece5f20236e9de1bc3 Mon Sep 17 00:00:00 2001
|
||||||
|
From: Albert Astals Cid <aacid@kde.org>
|
||||||
|
Date: Mon, 24 Mar 2025 00:44:54 +0100
|
||||||
|
Subject: [PATCH] PSStack::roll: Protect against doing int = -INT_MIN
|
||||||
|
|
||||||
|
CVE: CVE-2025-32364
|
||||||
|
Upstream-Status: Backport [https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3]
|
||||||
|
|
||||||
|
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
|
||||||
|
---
|
||||||
|
poppler/Function.cc | 2 +-
|
||||||
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
||||||
|
|
||||||
|
diff --git a/poppler/Function.cc b/poppler/Function.cc
|
||||||
|
index 043ae8e..65888a0 100644
|
||||||
|
--- a/poppler/Function.cc
|
||||||
|
+++ b/poppler/Function.cc
|
||||||
|
@@ -1066,7 +1066,7 @@ void PSStack::roll(int n, int j)
|
||||||
|
PSObject obj;
|
||||||
|
int i, k;
|
||||||
|
|
||||||
|
- if (unlikely(n == 0)) {
|
||||||
|
+ if (unlikely(n == 0 || j == INT_MIN)) {
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
if (j >= 0) {
|
||||||
|
--
|
||||||
|
2.40.0
|
||||||
@@ -12,6 +12,7 @@ SRC_URI = "http://poppler.freedesktop.org/${BP}.tar.xz \
|
|||||||
file://CVE-2024-6239-0001.patch \
|
file://CVE-2024-6239-0001.patch \
|
||||||
file://CVE-2024-6239-0002.patch \
|
file://CVE-2024-6239-0002.patch \
|
||||||
file://CVE-2024-56378.patch \
|
file://CVE-2024-56378.patch \
|
||||||
|
file://CVE-2025-32364.patch \
|
||||||
"
|
"
|
||||||
SRC_URI[sha256sum] = "b6d893dc7dcd4138b9e9df59a13c59695e50e80dc5c2cacee0674670693951a1"
|
SRC_URI[sha256sum] = "b6d893dc7dcd4138b9e9df59a13c59695e50e80dc5c2cacee0674670693951a1"
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user