graphics/optipng: Add fix for CVE-2023-43907
0ce6caa1ea71
Actions

Description

graphics/optipng: Add fix for CVE-2023-43907

Add a bounds check to prevent out-of-bounds read of buffer on specially-formed GIF files.
Remove BUNDLED_LIBPNG and BUNDLED_ZLIB, as the supplied versions are well out of date and offer no noted advantages.

PR: 274822
MFH: 2023Q4
Security: fe7ac70a-792b-11ee-bf9a-a04a5edf46d9
(cherry picked from commit 0a1052798c8e4879ca869b9032830a4ca00b1c02)

Provenance

tom_hur.st	Authored on Oct 30 2023, 10:45 PM
fuz	Committed on Nov 3 2023, 9:20 PM

Parents

R11:b96c2444c1f8: devel/R-cran-fansi: Update to 1.0.5

Branches

Unknown

Tags

Unknown

Path

Size

graphics/

optipng/

files/