rpms / OpenEXR

Clone
Source Code
GIT

Blame SOURCES/CVE-2020-11763.patch

c4 c5 c5-plus c6 c6-plus c7 c7-beta c8 c8-beta c8-containeronly-stream-flatpak c8s c9 c9-beta
  1.   b85ae402f86008674ef5a1adbef41b0614c15285
  2.   SOURCES
  3.   CVE-2020-11763.patch
Blob History Raw
b85ae4 
diff -urNp a/IlmImf/ImfRleCompressor.cpp b/IlmImf/ImfRleCompressor.cpp
b85ae4 
--- a/IlmImf/ImfRleCompressor.cpp	2020-06-02 12:29:00.823667417 +0200
b85ae4 
+++ b/IlmImf/ImfRleCompressor.cpp	2020-06-02 12:32:51.134011377 +0200
b85ae4 
@@ -135,6 +135,11 @@ rleUncompress (int inLength, int maxLeng
b85ae4 
 	    if (0 > (maxLength -= count))
b85ae4 
 		return 0;
b85ae4
b85ae4 
+        // check the input buffer is big enough to contain
b85ae4 
+        // 'count' bytes of remaining data
b85ae4 
+        if (inLength < 0)
b85ae4 
+          return 0;
b85ae4 
+
b85ae4 
 	    while (count-- > 0)
b85ae4 
 		*out++ = *(char *) (in++);
b85ae4 
 	}

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation