summaryrefslogtreecommitdiff
path: root/repo/sdl2-image
diff options
context:
space:
mode:
Diffstat (limited to 'repo/sdl2-image')
-rw-r--r--repo/sdl2-image/CVE-2019-13616.patch24
-rw-r--r--repo/sdl2-image/sdl2-image.xibuild38
2 files changed, 62 insertions, 0 deletions
diff --git a/repo/sdl2-image/CVE-2019-13616.patch b/repo/sdl2-image/CVE-2019-13616.patch
new file mode 100644
index 0000000..cb0fe87
--- /dev/null
+++ b/repo/sdl2-image/CVE-2019-13616.patch
@@ -0,0 +1,24 @@
+
+# HG changeset patch
+# User Sam Lantinga <slouken@libsdl.org>
+# Date 1564509612 25200
+# Node ID ba45f00879ba0b957780e1fd28304c41503c1737
+# Parent f1baffa48926c4c76f482f21a240667e9159d1d5
+Fixed bug 4538 - validate image size when loading BMP files
+
+diff -r f1baffa48926 -r ba45f00879ba IMG_bmp.c
+--- a/IMG_bmp.c Tue Jul 30 10:16:02 2019 -0700
++++ b/IMG_bmp.c Tue Jul 30 11:00:12 2019 -0700
+@@ -351,6 +351,11 @@
+ SDL_RWseek(src, (biSize - headerSize), RW_SEEK_CUR);
+ }
+ }
++ if (biWidth <= 0 || biHeight == 0) {
++ IMG_SetError("BMP file with bad dimensions (%dx%d)", biWidth, biHeight);
++ was_error = SDL_TRUE;
++ goto done;
++ }
+ if (biHeight < 0) {
+ topDown = SDL_TRUE;
+ biHeight = -biHeight;
+
diff --git a/repo/sdl2-image/sdl2-image.xibuild b/repo/sdl2-image/sdl2-image.xibuild
new file mode 100644
index 0000000..893107a
--- /dev/null
+++ b/repo/sdl2-image/sdl2-image.xibuild
@@ -0,0 +1,38 @@
+#!/bin/sh
+
+NAME="sdl2-image"
+DESC="A simple library to load images of various formats as SDL surfaces"
+
+MAKEDEPS=" sdl2 libpng libjpeg-turbo libwebp tiff zlib"
+
+PKG_VER=2.0.5
+SOURCE="https://www.libsdl.org/projects/SDL_image/release/SDL2_image-$PKG_VER.tar.gz"
+
+ADDITIONAL="
+CVE-2019-13616.patch
+"
+
+prepare () {
+ apply_patches
+}
+
+build() {
+ ./configure \
+ --prefix=/usr \
+ --disable-static \
+ --enable-png \
+ --enable-png-shared \
+ --sysconfdir=/etc \
+ --mandir=/usr/share/man \
+ --infodir=/usr/share/info
+ make
+}
+
+check() {
+ make check
+}
+
+package() {
+ make DESTDIR="$PKG_DEST" install
+}
+