Overview

File openexr-CVE-2021-20298.patch of Package openexr.21776

Index: openexr-2.1.0/IlmImf/ImfB44Compressor.cpp
===================================================================
--- openexr-2.1.0.orig/IlmImf/ImfB44Compressor.cpp	2021-08-03 17:07:05.896212845 +0200
+++ openexr-2.1.0/IlmImf/ImfB44Compressor.cpp	2021-08-03 17:07:05.980213452 +0200
@@ -492,7 +492,7 @@ B44Compressor::B44Compressor
     //
 
     _tmpBuffer = new unsigned short
-        [checkArraySize (uiMult (maxScanLineSize, numScanLines),
+        [checkArraySize (uiMult (maxScanLineSize / sizeof(unsigned short), numScanLines),
                          sizeof (unsigned short))];
 
     const ChannelList &channels = header().channels();
openSUSE Build Service is sponsored by
Places