Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15-SP2:GA
poppler-qt5.31330
poppler-CVE-2018-21009.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File poppler-CVE-2018-21009.patch of Package poppler-qt5.31330
Index: poppler-0.62.0/poppler/Parser.cc =================================================================== --- poppler-0.62.0.orig/poppler/Parser.cc +++ poppler-0.62.0/poppler/Parser.cc @@ -249,6 +249,12 @@ Stream *Parser::makeStream(Object &&dict pos = pos - 1; lexer->lookCharLastValueCached = Lexer::LOOK_VALUE_NOT_CACHED; } + if (unlikely(pos > LONG_LONG_MAX - length)) { + return nullptr; + } + if (unlikely(length < 0)) { + return nullptr; + } lexer->setPos(pos + length); // refill token buffers and check for 'endstream'
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor