]> granicus.if.org Git - libjpeg-turbo/commit
cjpeg: Fix buf overrun caused by bad bin PPM input
authorDRC <information@libjpeg-turbo.org>
Thu, 31 Mar 2016 14:49:49 +0000 (09:49 -0500)
committerDRC <information@libjpeg-turbo.org>
Thu, 31 Mar 2016 14:54:14 +0000 (09:54 -0500)
commit1e81b0c3ea26f4ea8f56de05367469333de64a9f
tree01effaa05aa7f43cdd24be03d6f242b762845c8f
parent6f241d4d425296badbf6b4f9477fbc3cace5a8fc
cjpeg: Fix buf overrun caused by bad bin PPM input

This extends the fix in 6709e4a0cfa44d4f54ee8ad05753d4aa9260cb91 to
include binary PPM/PGM files, thus preventing a malformed binary
PPM/PGM input file from triggering an overrun of the rescale array and
potentially crashing cjpeg.

Note that this issue affected only cjpeg and not the underlying
libjpeg-turbo libraries, and thus it did not represent a security
threat.

Thanks to @hughdavenport for the discovery.
ChangeLog.txt
rdppm.c