Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP1:GA
php5.4366
php-CVE-2016-10168.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File php-CVE-2016-10168.patch of Package php5.4366
Index: php-7.0.7/ext/gd/libgd/gd_gd2.c =================================================================== --- php-7.0.7.orig/ext/gd/libgd/gd_gd2.c 2017-01-31 15:29:56.094256494 +0100 +++ php-7.0.7/ext/gd/libgd/gd_gd2.c 2017-01-31 15:30:18.594568006 +0100 @@ -136,6 +136,10 @@ static int _gd2GetHeader(gdIOCtxPtr in, GD2_DBG(php_gd_error("%d Chunks vertically", *ncy)); if (gd2_compressed(*fmt)) { + if (*ncx <= 0 || *ncy <= 0 || *ncx > INT_MAX / *ncy) { + GD2_DBG(printf ("Illegal chunk counts: %d * %d\n", *ncx, *ncy)); + goto fail1; + } nc = (*ncx) * (*ncy); GD2_DBG(php_gd_error("Reading %d chunk index entries", nc)); if (overflow2(sidx, nc)) {
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
