GNU bug report logs - #72245
[PATCH] Fix integer overflow when reading XPM

Previous Next

Package: emacs;

Reported by: Stefan Kangas <stefankangas <at> gmail.com>

Date: Mon, 22 Jul 2024 14:37:02 UTC

Severity: minor

Tags: patch

Fixed in version 31.1

Done: Stefan Kangas <stefankangas <at> gmail.com>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: Stefan Kangas <stefankangas <at> gmail.com>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#72245: closed ([PATCH] Fix integer overflow when reading XPM)
Date: Sun, 01 Sep 2024 11:23:02 +0000

[Message part 1 (text/plain, inline)]
Your message dated Sun, 1 Sep 2024 04:20:32 -0700
with message-id <CADwFkmkxNqtGhDZsxwRd+qw0GH-zfTJL6QXj0ZWe9coGz9+JKg <at> mail.gmail.com>
and subject line Re: bug#72245: [PATCH] Fix integer overflow when reading XPM
has caused the debbugs.gnu.org bug report #72245,
regarding [PATCH] Fix integer overflow when reading XPM
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
72245: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=72245
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]
From: Stefan Kangas <stefankangas <at> gmail.com>
To: bug-gnu-emacs <at> gnu.org
Subject: [PATCH] Fix integer overflow when reading XPM
Date: Mon, 22 Jul 2024 07:35:55 -0700

[Message part 3 (text/plain, inline)]
Severity: minor

Since XPM files are untrusted input, I think we'd better handle integer
overflow when parsing it, in case the file is malformed.

Proposed patch attached.

[0001-Fix-integer-overflow-when-reading-XPM.patch (text/x-patch, attachment)]
[Message part 5 (message/rfc822, inline)]
From: Stefan Kangas <stefankangas <at> gmail.com>
To: 72245-done <at> debbugs.gnu.org
Subject: Re: bug#72245: [PATCH] Fix integer overflow when reading XPM
Date: Sun, 1 Sep 2024 04:20:32 -0700

Version: 31.1

Stefan Kangas <stefankangas <at> gmail.com> writes:

> Since we don't have an alternative patch, I will install the one I
> proposed in the next couple of days.  Thanks.

Pushed to master as commit 73277a4097b.  Closing.
This bug report was last modified 264 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.