From 039cbaca07a03305d85e915f4047ce04ca801482 Mon Sep 17 00:00:00 2001
From: Karen Arutyunov <karen@codesynthesis.com>
Date: Mon, 29 Aug 2022 20:49:20 +0300
Subject: Release version 1.2.1200+2

Apply patches which fix CVE-2022-37434

Rewrite testscript not to use files

Update TODO file

Update libz/README-DEV file
---
 libz/libz/CVE-2022-37434-1eb7682.patch | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 libz/libz/CVE-2022-37434-1eb7682.patch

(limited to 'libz/libz/CVE-2022-37434-1eb7682.patch')

diff --git a/libz/libz/CVE-2022-37434-1eb7682.patch b/libz/libz/CVE-2022-37434-1eb7682.patch
new file mode 100644
index 0000000..b371036
--- /dev/null
+++ b/libz/libz/CVE-2022-37434-1eb7682.patch
@@ -0,0 +1,20 @@
+1eb7682f845ac9e9bf9ae35bbfb3bad5dacbd91d
+:100644 100644 7a728974923a43306eff24fc5d84191cd7b92cf2 2a3c4fe9846406c15a4bbd02e7fe6907589e1670 M	inflate.c
+
+diff --git a/inflate.c b/inflate.c
+index 7a72897..2a3c4fe 100644
+--- a/inflate.c
++++ b/inflate.c
+@@ -763,10 +763,10 @@ int flush;
+                 copy = state->length;
+                 if (copy > have) copy = have;
+                 if (copy) {
+-                    len = state->head->extra_len - state->length;
+                     if (state->head != Z_NULL &&
+                         state->head->extra != Z_NULL &&
+-                        len < state->head->extra_max) {
++                        (len = state->head->extra_len - state->length) <
++                            state->head->extra_max) {
+                         zmemcpy(state->head->extra + len, next,
+                                 len + copy > state->head->extra_max ?
+                                 state->head->extra_max - len : copy);
-- 
cgit v1.1