rpms / jasper

Clone
Source Code
GIT

Blame SOURCES/jasper-2.0.14-CVE-2020-27828.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c7-ppc64le c8 c8-beta c8s c9 c9-beta
  1.   491fbb1b151730720e8ff8ae669d52d8b288587e
  2.   SOURCES
  3.   jasper-2.0.14-CVE-2020-27828.patch
Blob History Raw
491fbb 
diff -urNp a/src/libjasper/jpc/jpc_enc.c b/src/libjasper/jpc/jpc_enc.c
491fbb 
--- a/src/libjasper/jpc/jpc_enc.c	2021-06-01 14:07:34.988061153 +0200
491fbb 
+++ b/src/libjasper/jpc/jpc_enc.c	2021-06-01 14:08:32.100584582 +0200
491fbb 
@@ -508,6 +508,10 @@ static jpc_enc_cp_t *cp_create(const cha
491fbb 
 			break;
491fbb 
 		case OPT_MAXRLVLS:
491fbb 
 			tccp->maxrlvls = atoi(jas_tvparser_getval(tvp));
491fbb 
+            if(tccp->maxrlvls > JPC_MAXRLVLS) {
491fbb 
+				jas_eprintf("invalid number of resolution levels upper than %d\n",JPC_MAXRLVLS);
491fbb 
+				goto error;
491fbb 
+			}
491fbb 
 			break;
491fbb 
 		case OPT_SOP:
491fbb 
 			cp->tcp.csty |= JPC_COD_SOP;

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation