From 7a907a5be08c90e2316b4d6b15719107e93828e5 Mon Sep 17 00:00:00 2001 From: panxiaohe Date: Tue, 5 Jul 2022 10:07:07 +0800 Subject: [PATCH] fix CVE-2022-2085 --- backport-CVE-2022-2085.patch | 38 ++++++++++++++++++++++++++++++++++++ ghostscript.spec | 6 +++++- 2 files changed, 43 insertions(+), 1 deletion(-) create mode 100644 backport-CVE-2022-2085.patch diff --git a/backport-CVE-2022-2085.patch b/backport-CVE-2022-2085.patch new file mode 100644 index 0000000..7b74282 --- /dev/null +++ b/backport-CVE-2022-2085.patch @@ -0,0 +1,38 @@ +From ae1061d948d88667bdf51d47d918c4684d0f67df Mon Sep 17 00:00:00 2001 +From: Robin Watts +Date: Wed, 16 Feb 2022 15:22:50 +0000 +Subject: [PATCH] Bug 704945: Add init_device_procs entry for mem_x_device. + +When allocating a buffer device, we rely on an init_device_procs +being defined for the device we are using as a prototype. Which +device we use as a prototype depends upon the number of bits per +pixel we are using. For bpp > 64, we use mem_x_device, which does +not currently have an init_device_procs defined. + +This is a fairly hard case to tickle, as very few devices use +more than 64 bits per pixel. The DeviceN device is one of the +few that does, and then the problem only kicks in if the +MaxBitmap figure is high enough (or conversely the resolution is +low enough). +--- + base/gdevmx.c | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/base/gdevmx.c b/base/gdevmx.c +index 08b0cbcfe1..89e9ff7745 100644 +--- a/base/gdevmx.c ++++ b/base/gdevmx.c +@@ -1,4 +1,4 @@ +-/* Copyright (C) 2001-2021 Artifex Software, Inc. ++/* Copyright (C) 2001-2022 Artifex Software, Inc. + All Rights Reserved. + + This software is provided AS-IS with no warranty, either express or +@@ -25,4 +25,4 @@ + + /* The device descriptor. */ + const gx_device_memory mem_x_device = +- mem_device("imagex", 256, 0, NULL); ++ mem_device("imagex", 256, 0, mem_initialize_device_procs); +-- +2.25.1 diff --git a/ghostscript.spec b/ghostscript.spec index 247113a..bcbf08c 100644 --- a/ghostscript.spec +++ b/ghostscript.spec @@ -9,7 +9,7 @@ Name: ghostscript Version: 9.55.0 -Release: 1 +Release: 2 Summary: An interpreter for PostScript and PDF files License: AGPLv3+ URL: https://ghostscript.com/ @@ -17,6 +17,7 @@ Source0: https://github.com/ArtifexSoftware/ghostpdl-downloads/releases Patch0: ghostscript-9.23-100-run-dvipdf-securely.patch Patch1: backport-Bug-704405-Fix-typo-in-non-forked-lcms2-code.patch +Patch2: backport-CVE-2022-2085.patch BuildRequires: automake gcc BuildRequires: adobe-mappings-cmap-devel adobe-mappings-pdf-devel @@ -177,6 +178,9 @@ install -m 0755 -d %{buildroot}%{_datadir}/%{name}/conf.d/ %{_bindir}/dvipdf %changelog +* Tue Jul 5 2022 panxiaohe - 9.55.0-2 +- fix CVE-2022-2085 + * Sat Dec 11 2021 yangzhuangzhuang - 9.55.0-1 - Type:enhancement - ID:NA -- Gitee