Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:xernea:pdftohtmlex
mingw32-libqt4
CVE-2018-15518.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2018-15518.patch of Package mingw32-libqt4
Author: Allan Sandfeld Jensen <allan.jensen@qt.io> AuthorDate: 2018-08-13 15:29:16 +0200 Commit: Allan Sandfeld Jensen <allan.jensen@qt.io> CommitDate: 2018-08-13 15:10:11 +0000 Fix possible heap corruption in QXmlStream The value of 'tos' at the check might already be on the last element, so triggering stack expansion on the second last element is too late. Change-Id: Ib3ab2662d4d27a71effe9e988b9e172923af2908 Reviewed-by: Richard J. Moore <rich@kde.org> Reviewed-by: Thiago Macieira <thiago.macieira@intel.com> --- qt-everywhere-opensource-src-4.8.7.orig/src/corelib/xml/qxmlstream_p.h +++ qt-everywhere-opensource-src-4.8.7/src/corelib/xml/qxmlstream_p.h @@ -1242,7 +1242,7 @@ bool QXmlStreamReaderPrivate::parse() state_stack[tos] = 0; return true; } else if (act > 0) { - if (++tos == stack_size-1) + if (++tos >= stack_size-1) reallocateStack(); Value &val = sym_stack[tos];
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
