File openjpeg2-CVE-2020-27843.patch of Package openjpeg2.26562

Index: openjpeg-2.1.0/src/lib/openjp2/t2.c
===================================================================
--- openjpeg-2.1.0.orig/src/lib/openjp2/t2.c
+++ openjpeg-2.1.0/src/lib/openjp2/t2.c
@@ -609,8 +609,15 @@ OPJ_BOOL opj_t2_encode_packet(  OPJ_UINT
         /* Writing Packet header */
         band = res->bands;
         for (bandno = 0; bandno < res->numbands; ++bandno)      {
-                opj_tcd_precinct_t *prc = &band->precincts[precno];
+                opj_tcd_precinct_t *prc;
 
+                /* Avoid out of bounds access of https://github.com/uclouvain/openjpeg/issues/1297 */
+                /* but likely not a proper fix. */
+                if (precno >= res->pw * res->ph) {
+                        return OPJ_FALSE;
+                }
+
+                prc = &band->precincts[precno];
                 l_nb_blocks = prc->cw * prc->ch;
                 cblk = prc->cblks.enc;

Places

File openjpeg2-CVE-2020-27843.patch of Package openjpeg2.26562

Places