Overview

File freerdp-CVE-2026-23530.patch of Package freerdp

From 1bab198a2edd0d0e6e1627d21a433151ea190500 Mon Sep 17 00:00:00 2001
From: akallabeth <akallabeth@posteo.net>
Date: Thu, 15 Jan 2026 12:02:02 +0100
Subject: [PATCH] [codec,planar] fix decoder length checks

---
 libfreerdp/codec/planar.c | 5 +++++
 1 file changed, 5 insertions(+)

Index: FreeRDP-2.4.0/libfreerdp/codec/planar.c
===================================================================
--- FreeRDP-2.4.0.orig/libfreerdp/codec/planar.c
+++ FreeRDP-2.4.0/libfreerdp/codec/planar.c
@@ -612,6 +612,11 @@ BOOL planar_decompress(BITMAP_PLANAR_CON
 	const UINT32 h = MIN(nSrcHeight, nDstHeight);
 	const primitives_t* prims = primitives_get();
 
+	if (planar->maxWidth < nSrcWidth)
+		return FALSE;
+	if (planar->maxHeight < nSrcHeight)
+		return FALSE;
+
 	if (nDstStep <= 0)
 		nDstStep = nDstWidth * GetBytesPerPixel(DstFormat);
openSUSE Build Service is sponsored by
Places