From: Archana Polampalli <archana.polampa...@windriver.com> Signed-off-by: Archana Polampalli <archana.polampa...@windriver.com> --- .../ghostscript/CVE-2023-52722.patch | 43 +++++++++++++++++++ .../ghostscript/ghostscript_9.55.0.bb | 1 + 2 files changed, 44 insertions(+) create mode 100644 meta/recipes-extended/ghostscript/ghostscript/CVE-2023-52722.patch
diff --git a/meta/recipes-extended/ghostscript/ghostscript/CVE-2023-52722.patch b/meta/recipes-extended/ghostscript/ghostscript/CVE-2023-52722.patch new file mode 100644 index 0000000000..8fbfc9ef09 --- /dev/null +++ b/meta/recipes-extended/ghostscript/ghostscript/CVE-2023-52722.patch @@ -0,0 +1,43 @@ +From 1ff9a695947967d2d327c45bf5145dd381fc1745 Mon Sep 17 00:00:00 2001 +From: Chris Liddell <chris.lidd...@artifex.com> +Date: Tue, 12 Sep 2023 10:46:10 +0100 +Subject: [PATCH 5/5] In SAFER (default) don't allow eexec seeds other than the + Type 1 standard + +CVE: CVE-2023-52722 + +Upstream-Status: Backport [https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=1ff9a695947967d2d327] + +Signed-off-by: Archana Polampalli <archana.polampa...@windriver.com> +--- + psi/zmisc1.c | 8 ++++++++ + 1 file changed, 8 insertions(+) + +diff --git a/psi/zmisc1.c b/psi/zmisc1.c +index 3c47e99..81556ac 100644 +--- a/psi/zmisc1.c ++++ b/psi/zmisc1.c +@@ -93,6 +93,9 @@ zexE(i_ctx_t *i_ctx_p) + + if (code < 0) + return code; ++ if (gs_is_path_control_active(imemory) != 0 && state.cstate != 55665) { ++ return_error(gs_error_rangecheck); ++ } + return filter_write(i_ctx_p, code, &s_exE_template, (stream_state *)&state, 0); + } + +@@ -130,6 +133,11 @@ zexD(i_ctx_t *i_ctx_p) + } + if (code < 0) + return code; ++ ++ if (gs_is_path_control_active(imemory) != 0 && state.cstate != 55665) { ++ return_error(gs_error_rangecheck); ++ } ++ + /* + * If we're reading a .PFB file, let the filter know about it, + * so it can read recklessly to the end of the binary section. +-- +2.40.0 diff --git a/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb b/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb index 1fd08d1cfe..2e332b1589 100644 --- a/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb +++ b/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb @@ -49,6 +49,7 @@ SRC_URI_BASE = "https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/d file://CVE-2024-33871-0001.patch \ file://CVE-2024-33871-0002.patch \ file://CVE-2024-29510.patch \ + file://CVE-2023-52722.patch \ " SRC_URI = "${SRC_URI_BASE} \ -- 2.40.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#199987): https://lists.openembedded.org/g/openembedded-core/message/199987 Mute This Topic: https://lists.openembedded.org/mt/106364227/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-