Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-12-SP4:GA
poppler
poppler-CVE-2022-27337.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File poppler-CVE-2022-27337.patch of Package poppler
Index: poppler-0.43.0/poppler/Hints.cc =================================================================== --- poppler-0.43.0.orig/poppler/Hints.cc +++ poppler-0.43.0/poppler/Hints.cc @@ -123,14 +123,30 @@ void Hints::readTables(BaseStream *str, obj.initNull(); Stream *s = str->makeSubStream(hintsOffset, gFalse, hintsLength, &obj); s->reset(); - for (Guint i=0; i < hintsLength; i++) { *p++ = s->getChar(); } + for (Guint i=0; i < hintsLength; i++) { + const int c = s->getChar(); + if (unlikely(c == EOF)) { + error(errSyntaxWarning, -1, "Found EOF while reading hints"); + delete s; + return; + } + *p++ = c; + } delete s; if (hintsOffset2 && hintsLength2) { obj.initNull(); s = str->makeSubStream(hintsOffset2, gFalse, hintsLength2, &obj); s->reset(); - for (Guint i=0; i < hintsLength2; i++) { *p++ = s->getChar(); } + for (Guint i=0; i < hintsLength2; i++) { + const int c = s->getChar(); + if (unlikely(c == EOF)) { + error(errSyntaxWarning, -1, "Found EOF while reading hints"); + delete s; + return; + } + *p++ = c; + } delete s; }
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor