Fix CVE-2017-11110: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11110 https://bugzilla.redhat.com/show_bug.cgi?id=1468471 https://security-tracker.debian.org/tracker/CVE-2017-11110 Patch copied from openSUSE: https://build.opensuse.org/package/view_file/openSUSE:Maintenance:6985/catdoc.openSUSE_Leap_42.2_Update/CVE-2017-11110.patch?expand=1 From: Andreas Stieger Date: Mon, 10 Jul 2017 15:37:58 +0000 References: CVE-2017-11110 http://bugzilla.suse.com/show_bug.cgi?id=1047877 All .doc I found had sectorSize 0x09 at offset 0x1e. Guarding it against <4. --- src/ole.c | 5 +++++ 1 file changed, 5 insertions(+) Index: catdoc-0.95/src/ole.c =================================================================== --- catdoc-0.95.orig/src/ole.c 2016-05-25 06:37:12.000000000 +0200 +++ catdoc-0.95/src/ole.c 2017-07-10 17:42:33.578308107 +0200 @@ -106,6 +106,11 @@ FILE* ole_init(FILE *f, void *buffer, si return NULL; } sectorSize = 1<= 4 for CVE-2017-11110 */ 1, sectorSize, newfile) != sectorSize) { fprintf(stderr, "Error read MSAT!\n"); ole_finish(); /diff/gnu/packages/patches/guile-3.0-relocatable.patch?id=1bd44b425b79e9da160b33a9b19d01973b44772e'>diff
AgeCommit message (Expand)Author
2020-05-01gnu: Add relocatable static Guile 3.0 variant....* gnu/packages/patches/guile-2.2-default-utf8.patch: New file, extracted from commit 2acfe022a740f79b593348cc6362cc4ee8f33bb4. * gnu/packages/patches/guile-3.0-linux-syscalls.patch, gnu/packages/patches/guile-3.0-relocatable.patch: New files. * gnu/local.mk (dist_patch_DATA): Adjust accordingly. Move all Guile patches together while at it. * gnu/packages/make-bootstrap.scm (%guile-3.0-static-stripped): New public variable. Marius Bakke