New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update gdImage*Ptr() functions for possible Double free bugs #492
Comments
you haven't attached any patches or linked to any bugs/patches/websites. so what are you asking for ? |
Hi, the patch file has been sent to mailing list mounts ago and here I added. https://0bin.asis.io/paste/+yPxFkcF#GHj3EaZckDwD-+d6k/fr3uwpzGg3yBD1jElc5FJiyXE |
if you have a patch you want to merge, please send a PR. we don't use random pastebin websites. |
@vapier We need to release 2.2.6 or 2.3.0 (I believe there are a few more sec fixes pending) – could you do this soon? |
Even though libgd/libgd#492 is not a relevant bug fix for PHP, since the binding doesn't use the `gdImage*Ptr()` functions at all, we're porting the fix to stay in sync here.
This issue has been assigned CVE-2019-6978. |
@vapier The test for jpeg_ptr_double_free is not what we expected. |
@eag1r, if you can come up with a better test, please provide a PR. Otherwise it seems to me that test is better than nothing, even though it only shows issues when run with valgrind. |
@cmb69 Thank you for your reply. It should have been my failure to restore the patch before. |
Hi, please commit the patch file.
The text was updated successfully, but these errors were encountered: