Blame SOURCES/jasper-CVE-2016-1867.patch

425a81
From 980da43d8d388a67cac505e734423b2a5aa4cede Mon Sep 17 00:00:00 2001
425a81
From: Richard Hughes <richard@hughsie.com>
425a81
Date: Mon, 19 Sep 2016 10:03:36 +0100
425a81
Subject: [PATCH] CVE-2016-1867
425a81
425a81
---
425a81
 src/libjasper/jpc/jpc_t2cod.c | 2 +-
425a81
 1 file changed, 1 insertion(+), 1 deletion(-)
425a81
425a81
diff --git a/src/libjasper/jpc/jpc_t2cod.c b/src/libjasper/jpc/jpc_t2cod.c
425a81
index e734900..b80d332 100644
425a81
--- a/src/libjasper/jpc/jpc_t2cod.c
425a81
+++ b/src/libjasper/jpc/jpc_t2cod.c
425a81
@@ -429,7 +429,7 @@ static int jpc_pi_nextcprl(register jpc_pi_t *pi)
425a81
 	}
425a81
 
425a81
 	for (pi->compno = pchg->compnostart, pi->picomp =
425a81
-	  &pi->picomps[pi->compno]; pi->compno < JAS_CAST(int, pchg->compnoend); ++pi->compno,
425a81
+	  &pi->picomps[pi->compno]; pi->compno < JAS_CAST(int, pchg->compnoend) && pi->compno < pi->numcomps; ++pi->compno,
425a81
 	  ++pi->picomp) {
425a81
 		pirlvl = pi->picomp->pirlvls;
425a81
 		pi->xstep = pi->picomp->hsamp * (1 << (pirlvl->prcwidthexpn +