Overview

File libexif5-CVE-2007-6352.patch of Package libexif5

--- libexif/exif-data.c
+++ libexif/exif-data.c
@@ -205,7 +205,7 @@
 exif_data_load_data_thumbnail (ExifData *data, const unsigned char *d,
 			       unsigned int ds, ExifLong offset, ExifLong size)
 {
-	if (ds < offset + size) {
+	if ((ds < offset + size) || (offset > ds)) {
 #ifdef DEBUG
 		printf ("Bogus thumbnail offset and size: %i < %i + %i.\n",
 			(int) ds, (int) offset, (int) size);
openSUSE Build Service is sponsored by
Places