Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP4:Update
gdk-pixbuf.6213
gdk-pixbuf-cve-2017-6313-icns-integer-underflow...
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File gdk-pixbuf-cve-2017-6313-icns-integer-underflow.patch of Package gdk-pixbuf.6213
From f1dbd5545c3f16a96bada77bd280b637cc0bf550 Mon Sep 17 00:00:00 2001 From: Hans Petter Jansson <hpj@cl.no> Date: Wed, 19 Jul 2017 22:54:48 +0200 Subject: [PATCH] icns: Fix possible integer underflow Make sure blocklen is greater than or equal to the size of an IcnsBlockHeader. https://bugzilla.gnome.org/show_bug.cgi?id=779016 --- gdk-pixbuf/io-icns.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/gdk-pixbuf/io-icns.c b/gdk-pixbuf/io-icns.c index a432e46..3ff6e2e 100644 --- a/gdk-pixbuf/io-icns.c +++ b/gdk-pixbuf/io-icns.c @@ -98,6 +98,9 @@ load_resources (unsigned size, IN gpointer data, gsize datalen, if (blocklen > icnslen - (current - bytes)) return FALSE; + if (blocklen < sizeof (IcnsBlockHeader)) + return FALSE; + switch (size) { case 256: -- 2.12.0
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor