rpms / dcraw

Clone
Source Code
GIT

Blame SOURCES/dcraw-CVE-2017-14608.patch

c4 c5 c5-plus c6 c6-plus c7 c7-beta c8 c8-beta c8-containeronly-stream-flatpak c8s c9 c9-beta
  1.   7eb5faa745de4f5e6d0196100a56193e1bc26e69
  2.   SOURCES
  3.   dcraw-CVE-2017-14608.patch
Blob History Raw
7eb5fa 
diff -urNp old/dcraw.c new/dcraw.c
7eb5fa 
--- old/dcraw.c	2018-07-11 10:53:51.141803505 +0200
7eb5fa 
+++ new/dcraw.c	2018-07-11 11:30:08.850528389 +0200
7eb5fa 
@@ -2627,8 +2627,15 @@ void CLASS kodak_65000_load_raw()
7eb5fa 
       len = MIN (256, width-col);
7eb5fa 
       ret = kodak_65000_decode (buf, len);
7eb5fa 
       for (i=0; i < len; i++)
7eb5fa 
-	if ((RAW(row,col+i) =	curve[ret ? buf[i] :
7eb5fa 
-		(pred[i & 1] += buf[i])]) >> 12) derror();
7eb5fa 
+	{
7eb5fa 
+	int idx = ret ? buf[i] : (pred[i & 1] += buf[i]);
7eb5fa 
+	if(idx >=0 && idx <= 0xffff)
7eb5fa 
+	 {
7eb5fa 
+	   if ((RAW(row,col+i) = curve[idx]) >> 12) derror();
7eb5fa 
+         }
7eb5fa 
+	 else
7eb5fa 
+	   derror();
7eb5fa 
+      }
7eb5fa 
     }
7eb5fa 
 }
7eb5fa

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation