rpms / qt

Clone
Source Code
GIT

Blame SOURCES/qt-bmp-image-handler-check-for-out-of-range-image-size.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c7-ppc64le
  1.   c7-beta
  2.   SOURCES
  3.   qt-bmp-image-handler-check-for-out-of-range-image-size.patch
Blob History Raw
80a0e2 
diff --git a/src/gui/image/qbmphandler.cpp b/src/gui/image/qbmphandler.cpp
80a0e2 
index 078c5993..5165bf19 100644
80a0e2 
--- a/src/gui/image/qbmphandler.cpp
80a0e2 
+++ b/src/gui/image/qbmphandler.cpp
80a0e2 
@@ -181,7 +181,8 @@ static bool read_dib_infoheader(QDataStream &s, BMP_INFOHDR &bi)
80a0e2 
     if (!(comp == BMP_RGB || (nbits == 4 && comp == BMP_RLE4) ||
80a0e2 
         (nbits == 8 && comp == BMP_RLE8) || ((nbits == 16 || nbits == 32) && comp == BMP_BITFIELDS)))
80a0e2 
          return false;                                // weird compression type
80a0e2 
-
80a0e2 
+    if (bi.biWidth < 0 || quint64(bi.biWidth) * qAbs(bi.biHeight) > 16384 * 16384)
80a0e2 
+        return false;
80a0e2 
     return true;
80a0e2 
 }
80a0e2

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation