mirror of
https://github.com/tensorflow/tensorflow.git
synced 2024-11-21 12:51:46 +00:00
8b330d28a0
Add a patch file to fix giflib's compilation issue on Windows (replace a call to strtok_r with strtok_s). # CVE-2019-15133 **NVD**: 2019/08/17 - CVSS v2.0 Base Score: 4.3 - CVSS v3.0 Base Score: 6.5 In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero. ## **References to Advisories, Solutions, and Tools** Source | Link | Type ---- | ---- | ---- MISC | bugs.chromium.org | Mailing List, Third Party Advisory UBUNTU | usn.ubuntu.com | Third Party Advisory PiperOrigin-RevId: 267533902
16 lines
584 B
Diff
16 lines
584 B
Diff
diff -r -u ./fixed_gif_font.c ./gif_font.c
|
|
--- ./fixed_gif_font.c 2019-09-05 11:05:25.009598262 -0700
|
|
+++ ./gif_font.c 2019-09-05 10:52:45.308389085 -0700
|
|
@@ -11,6 +11,11 @@
|
|
|
|
#include "gif_lib.h"
|
|
|
|
+// Windows doesn't have strtok_r.
|
|
+#if defined(WIN32) || defined(_WIN32) || defined(__WIN32) && !defined(__CYGWIN__)
|
|
+#define strtok_r strtok_s
|
|
+#endif
|
|
+
|
|
/*****************************************************************************
|
|
Ascii 8 by 8 regular font - only first 128 characters are supported.
|
|
*****************************************************************************/
|