From: sms
Subject: Fix CVE-2014-8141: out-of-bounds read issues in getZip64Data()
Bug-Debian: http://bugs.debian.org/773722

--- a/fileio.c
+++ b/fileio.c
@@ -176,6 +176,8 @@
 #endif
 static ZCONST char Far ExtraFieldTooLong[] =
   "warning:  extra field too long (%d).  Ignoring...\n";
+static ZCONST char Far ExtraFieldCorrupt[] =
+  "warning:  extra field (type: 0x%04x) corrupt.  Continuing...\n";
 
 #ifdef WINDLL
    static ZCONST char Far DiskFullQuery[] =
@@ -2295,7 +2297,12 @@
             if (readbuf(__G__ (char *)G.extra_field, length) == 0)
                 return PK_EOF;
             /* Looks like here is where extra fields are read */
-            getZip64Data(__G__ G.extra_field, length);
+            if (getZip64Data(__G__ G.extra_field, length) != PK_COOL)
+            {
+                Info(slide, 0x401, ((char *)slide,
+                 LoadFarString( ExtraFieldCorrupt), EF_PKSZ64));
+                error = PK_WARN;
+            }
 #ifdef UNICODE_SUPPORT
             G.unipath_filename = NULL</td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>refs</a><a href='/guix/log/Makefile.am'>log</a><a href='/guix/tree/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>tree</a><a class='active' href='/guix/commit/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>commit</a><a href='/guix/diff/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/Makefile.am'>
<input type='hidden' name='id' value='b3ee04cde70579f84061342d62d86fcc2093dd6c'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/commit/?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>root</a>/<a href='/guix/commit/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>Makefile.am</a></div><div class='content'><div class='cgit-panel'><b>diff options</b><form method='get'><input type='hidden' name='id' value='b3ee04cde70579f84061342d62d86fcc2093dd6c'/><table><tr><td colspan='2'/></tr><tr><td class='label'>context:</td><td class='ctrl'><select name='context' onchange='this.form.submit();'><option value='1'>1</option><option value='2'>2</option><option value='3' selected='selected'>3</option><option value='4'>4</option><option value='5'>5</option><option value='6'>6</option><option value='7'>7</option><option value='8'>8</option><option value='9'>9</option><option value='10'>10</option><option value='15'>15</option><option value='20'>20</option><option value='25'>25</option><option value='30'>30</option><option value='35'>35</option><option value='40'>40</option></select></td></tr><tr><td class='label'>space:</td><td class='ctrl'><select name='ignorews' onchange='this.form.submit();'><option value='0' selected='selected'>include</option><option value='1'>ignore</option></select></td></tr><tr><td class='label'>mode:</td><td class='ctrl'><select name='dt' onchange='this.form.submit();'><option value='0' selected='selected'>unified</option><option value='1'>ssdiff</option><option value='2'>stat only</option></select></td></tr><tr><td/><td class='ctrl'><noscript><input type='submit' value='reload'/></noscript></td></tr></table></form></div><table summary='commit info' class='commit-info'>
<tr><th>author</th><td>Thiago Jung Bauermann via Guix-patches via &lt;guix-patches@gnu.org&gt;</td><td class='right'>2021-09-16 02:18:16 -0300</td></tr>
<tr><th>committer</th><td>Guillaume Le Vaillant &lt;glv@posteo.net&gt;</td><td class='right'>2021-09-16 09:49:31 +0200</td></tr>
<tr><th>commit</th><td colspan='2' class='oid'><a href='/guix/commit/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>b3ee04cde70579f84061342d62d86fcc2093dd6c</a> (<a href='/guix/patch/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>patch</a>)</td></tr>
<tr><th>tree</th><td colspan='2' class='oid'><a href='/guix/tree/?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>19dd44245ea2b9a153c292bfc636515aa803f547</a> /<a href='/guix/tree/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c'>Makefile.am</a></td></tr>
<tr><th>parent</th><td colspan='2' class='oid'><a href='/guix/commit/Makefile.am?id=35848d2c2ed9263a4c15f5358fcb4ec26db8d18a'>35848d2c2ed9263a4c15f5358fcb4ec26db8d18a</a> (<a href='/guix/diff/Makefile.am?id=b3ee04cde70579f84061342d62d86fcc2093dd6c&amp;id2=35848d2c2ed9263a4c15f5358fcb4ec26db8d18a'>diff</a>)</td></tr><tr><th>download</th><td colspan='2' class='oid'><a href='/guix/snapshot/guix-b3ee04cde70579f84061342d62d86fcc2093dd6c.tar.gz'>guix-b3ee04cde70579f84061342d62d86fcc2093
author	Thiago Jung Bauermann via Guix-patches via <guix-patches@gnu.org>	2021-09-16 02:18:16 -0300
committer	Guillaume Le Vaillant <glv@posteo.net>	2021-09-16 09:49:31 +0200
commit	b3ee04cde70579f84061342d62d86fcc2093dd6c (patch)
tree	19dd44245ea2b9a153c292bfc636515aa803f547 /Makefile.am
parent	35848d2c2ed9263a4c15f5358fcb4ec26db8d18a (diff)
download	guix-b3ee04cde70579f84061342d62d86fcc2093