rpms / jasper

Clone
Source Code
GIT

Blame SOURCES/jasper-CVE-2016-9560.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c7-ppc64le c8 c8-beta c8s c9 c9-beta
  1.   425a81bb10b1acbaaa1c8a4ea0e1911a92b6f5b1
  2.   SOURCES
  3.   jasper-CVE-2016-9560.patch
Blob History Raw
425a81 
Backport of the upstream commit:
425a81
425a81 
From 1abc2e5a401a4bf1d5ca4df91358ce5df111f495 Mon Sep 17 00:00:00 2001
425a81 
From: Michael Adams <mdadams@ece.uvic.ca>
425a81 
Date: Sun, 20 Nov 2016 04:43:00 -0800
425a81 
Subject: [PATCH] Fixed an array overflow problem in the JPC decoder.
425a81
425a81 
diff -pruN jasper-1.900.1.orig/src/libjasper/jpc/jpc_dec.c jasper-1.900.1/src/libjasper/jpc/jpc_dec.c
425a81 
--- jasper-1.900.1.orig/src/libjasper/jpc/jpc_dec.c	2017-03-30 15:00:55.000000000 +0200
425a81 
+++ jasper-1.900.1/src/libjasper/jpc/jpc_dec.c	2017-03-30 17:56:05.000000000 +0200
425a81 
@@ -675,7 +675,7 @@ static int jpc_dec_tileinit(jpc_dec_t *d
425a81 
 	uint_fast32_t tmpxend;
425a81 
 	uint_fast32_t tmpyend;
425a81 
 	jpc_dec_cp_t *cp;
425a81 
-	jpc_tsfb_band_t bnds[64];
425a81 
+	jpc_tsfb_band_t bnds[JPC_MAXBANDS];
425a81 
 	jpc_pchg_t *pchg;
425a81 
 	int pchgno;
425a81 
 	jpc_dec_cmpt_t *cmpt;

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation