Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 476142 Details for
Bug 621600
<media-libs/openjpeg-2.1.1_p20160922: Integer overflow in opj_pi_create_decode
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
CVE-2016-7163-1.patch
CVE-2016-7163-1.patch (text/plain), 1.03 KB, created by
Andrey Ovcharov
on 2017-06-12 15:14:23 UTC
(
hide
)
Description:
CVE-2016-7163-1.patch
Filename:
MIME Type:
Creator:
Andrey Ovcharov
Created:
2017-06-12 15:14:23 UTC
Size:
1.03 KB
patch
obsolete
>From c16bc057ba3f125051c9966cf1f5b68a05681de4 Mon Sep 17 00:00:00 2001 >From: trylab <trylab@users.noreply.github.com> >Date: Tue, 6 Sep 2016 13:55:49 +0800 >Subject: [PATCH] Fix an integer overflow issue (#809) > >Prevent an integer overflow issue in function opj_pi_create_decode of >pi.c. >--- > src/lib/openjp2/pi.c | 8 +++++++- > 1 file changed, 7 insertions(+), 1 deletion(-) > >diff --git a/src/lib/openjp2/pi.c b/src/lib/openjp2/pi.c >index cffad66..36e2ff0 100644 >--- a/src/lib/openjp2/pi.c >+++ b/src/lib/openjp2/pi.c >@@ -1237,7 +1237,13 @@ opj_pi_iterator_t *opj_pi_create_decode(opj_image_t *p_image, > l_current_pi = l_pi; > > /* memory allocation for include */ >- l_current_pi->include = (OPJ_INT16*) opj_calloc((l_tcp->numlayers +1) * l_step_l, sizeof(OPJ_INT16)); >+ /* prevent an integer overflow issue */ >+ l_current_pi->include = 00; >+ if (l_step_l <= (SIZE_MAX / (l_tcp->numlayers + 1U))) >+ { >+ l_current_pi->include = (OPJ_INT16*) opj_calloc((l_tcp->numlayers +1) * l_step_l, sizeof(OPJ_INT16)); >+ } >+ > if > (!l_current_pi->include) > { >-- >2.10.0 >
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 621600
: 476142 |
476144