File CVE-2019-7636.patch of Package SDL2.23954
diff --git a/src/video/SDL_bmp.c b/src/video/SDL_bmp.c
index 78a9904..bf29f78 100644
--- a/src/video/SDL_bmp.c
+++ b/src/video/SDL_bmp.c
@@ -321,6 +321,10 @@ SDL_LoadBMP_RW(SDL_RWops * src, int freesrc)
SDL_assert(biBitCount <= 8);
if (biClrUsed == 0) {
biClrUsed = 1 << biBitCount;
+ } else if ( biClrUsed > (1 << biBitCount) ) {
+ SDL_SetError("BMP file has an invalid number of colors");
+ was_error = SDL_TRUE;
+ goto done;
}
if ((int) biClrUsed > palette->ncolors) {
SDL_Color *colors;