Blame SOURCES/autotrace-0.31.1-CVE-2016-7392.patch

fd98e1
Subject: Fix heap-based buffer overflow in pstoedit_suffix_table_init
fd98e1
ID: CVE-2016-7392
fd98e1
Author: unknown (taken from DLA-621-1)
fd98e1
Bug-Debian: https://bugs.debian.org/837599
fd98e1
fd98e1
--- a/output-pstoedit.c
fd98e1
+++ b/output-pstoedit.c
fd98e1
@@ -84,7 +84,7 @@
fd98e1
       dd_tmp   = dd_start;
fd98e1
       while (dd_tmp->symbolicname)
fd98e1
 	dd_tmp++;
fd98e1
-      XMALLOC(pstoedit_suffix_table, sizeof(char *) * 2 * (dd_tmp - dd_start) + 1);
fd98e1
+      XMALLOC(pstoedit_suffix_table, sizeof(char *) * (2 * (dd_tmp - dd_start) + 1));
fd98e1
 
fd98e1
 #if defined (OUTPUT_PSTOEDIT_DEBUG) && defined(__GNUC__)
fd98e1
   fprintf(stderr, "OUTPUT PSTOEDIT BACKEND DEBUG(%s)\n", __FUNCTION__);