rpms / OpenEXR

Clone
Source Code
GIT

Blame SOURCES/CVE-2020-11761.patch

c4 c5 c5-plus c6 c6-plus c7 c7-beta c8 c8-beta c8-containeronly-stream-flatpak c8s c9 c9-beta
  1.   b85ae402f86008674ef5a1adbef41b0614c15285
  2.   SOURCES
  3.   CVE-2020-11761.patch
Blob History Raw
b85ae4 
diff -urNp a/IlmImf/ImfHuf.cpp b/IlmImf/ImfHuf.cpp
b85ae4 
--- a/IlmImf/ImfHuf.cpp	2020-06-02 12:35:17.259513392 +0200
b85ae4 
+++ b/IlmImf/ImfHuf.cpp	2020-06-02 12:51:34.629524885 +0200
b85ae4 
@@ -1058,6 +1058,11 @@ hufUncompress (const char compressed[],
b85ae4
b85ae4 
     const char *ptr = compressed + 20;
b85ae4
b85ae4 
+    if ( ptr + (nBits+7 )/8 > compressed+nCompressed)
b85ae4 
+    {
b85ae4 
+        throw InputExc("invalid bit count for data size in Huf data");
b85ae4 
+    }
b85ae4 
+
b85ae4 
     AutoArray <Int64, HUF_ENCSIZE> freq;
b85ae4 
     AutoArray <HufDec, HUF_DECSIZE> hdec;
b85ae4

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation