Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15-SP1:GA
jasper
jasper-CVE-2018-9252.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File jasper-CVE-2018-9252.patch of Package jasper
Index: jasper-2.0.14/src/libjasper/jpc/jpc_enc.c =================================================================== --- jasper-2.0.14.orig/src/libjasper/jpc/jpc_enc.c +++ jasper-2.0.14/src/libjasper/jpc/jpc_enc.c @@ -173,7 +173,7 @@ static uint_fast32_t jpc_abstorelstepsiz int n; if (absdelta < 0) { - abort(); + return UINT_FAST32_MAX; } p = jpc_firstone(absdelta) - JPC_FIX_FRACBITS; @@ -181,8 +181,10 @@ static uint_fast32_t jpc_abstorelstepsiz mant = ((n < 0) ? (absdelta >> (-n)) : (absdelta << n)) & 0x7ff; expn = scaleexpn - p; if (scaleexpn < p) { - abort(); + return UINT_FAST32_MAX; } + if (expn >= 0x1f) + return UINT_FAST32_MAX; return JPC_QCX_EXPN(expn) | JPC_QCX_MANT(mant); } @@ -1014,9 +1016,12 @@ startoff = jas_stream_getrwcount(enc->ou } else { absstepsize = jpc_inttofix(1); } - cp->ccps[cmptno].stepsizes[bandno] = + const uint_fast32_t stepsize = jpc_abstorelstepsize(absstepsize, cp->ccps[cmptno].prec + analgain); + if (stepsize == UINT_FAST32_MAX) + return -1; + cp->ccps[cmptno].stepsizes[bandno] = stepsize; } cp->ccps[cmptno].numstepsizes = numbands; } @@ -1257,9 +1262,12 @@ jas_eprintf("%d %d mag=%d actual=%d numg } else { band->absstepsize = jpc_inttofix(1); } - band->stepsize = jpc_abstorelstepsize( + const uint_fast32_t stepsize = jpc_abstorelstepsize( band->absstepsize, cp->ccps[cmptno].prec + band->analgain); + if (stepsize == UINT_FAST32_MAX) + return -1; + band->stepsize = stepsize; band->numbps = cp->tccp.numgbits + JPC_QCX_GETEXPN(band->stepsize) - 1;
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor