77500da712
CVE-2009-1721 (denial of service (application crash) or possibly execute arbitrary code in the Imf::hufUncompress function). Bump PKGREVISION.
14 lines
543 B
Text
14 lines
543 B
Text
$NetBSD: patch-ag,v 1.1 2009/08/28 21:33:08 hasso Exp $
|
|
|
|
--- IlmImf/ImfRleCompressor.cpp.orig 2006-10-13 22:06:39.000000000 -0500
|
|
+++ IlmImf/ImfRleCompressor.cpp 2009-07-29 13:17:39.505037955 -0500
|
|
@@ -164,6 +164,9 @@ RleCompressor::RleCompressor (const Head
|
|
_tmpBuffer (0),
|
|
_outBuffer (0)
|
|
{
|
|
+ if ((unsigned) maxScanLineSize > INT_MAX / 3) {
|
|
+ throw Iex::InputExc ("Error: maxScanLineSize * 3 would overflow.");
|
|
+ }
|
|
_tmpBuffer = new char [maxScanLineSize];
|
|
_outBuffer = new char [maxScanLineSize * 3 / 2];
|
|
}
|