9ad3263e80
- Security fixes Multiple integer overflows Buffer overflow in the jas_stream_printf execute arbitrary code on decodes images Security: CVE-2008-3520 Security: CVE-2008-3522 Security: CVE-2011-4516 Security: CVE-2011-4517 PR: 163718 Obtained from: Fedora Feature safe: yes
11 lines
300 B
C
11 lines
300 B
C
--- src/libjasper/jpc/jpc_util.c.orig 2007-01-19 22:43:07.000000000 +0100
|
|
+++ src/libjasper/jpc/jpc_util.c 2013-04-17 22:32:23.000000000 +0200
|
|
@@ -109,7 +109,7 @@
|
|
}
|
|
|
|
if (n) {
|
|
- if (!(vs = jas_malloc(n * sizeof(double)))) {
|
|
+ if (!(vs = jas_malloc2(n, sizeof(double)))) {
|
|
return -1;
|
|
}
|
|
|