Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
No build reason found for SLE-Module-Legacy:x86_64
SUSE:SLE-12-SP3:GA
tiff.31358
tiff-CVE-2023-38288.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File tiff-CVE-2023-38288.patch of Package tiff.31358
Index: tiff-4.0.9/tools/tiffcp.c =================================================================== --- tiff-4.0.9.orig/tools/tiffcp.c +++ tiff-4.0.9/tools/tiffcp.c @@ -43,6 +43,7 @@ #include <stdio.h> #include <stdlib.h> #include <string.h> +#include <limits.h> #include <ctype.h> @@ -1404,6 +1405,13 @@ DECLAREreadFunc(readSeparateTilesIntoBuf TIFFError(TIFFFileName(in), "Error, cannot handle that much samples per tile row (Tile Width * Samples/Pixel)"); return 0; } + + if ( (imagew - tilew * spp) > INT_MAX ){ + TIFFError(TIFFFileName(in), + "Error, image raster scan line size is too large"); + return 0; + } + iskew = imagew - tilew*spp; tilebuf = _TIFFmalloc(tilesize);
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
