blob: f13f9d1d7e32fbe41fdba5f0c9fcb4f246dd3c7e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
|
$NetBSD: patch-ab,v 1.20 2010/08/04 17:48:22 tron Exp $
Fix for CVE-2010-2482 taken from here:
http://bugzilla.maptools.org/show_bug.cgi?id=1996
--- libtiff/tif_ojpeg.c.orig 2010-06-09 00:29:51.000000000 +0100
+++ libtiff/tif_ojpeg.c 2010-08-04 18:14:07.000000000 +0100
@@ -1920,6 +1920,10 @@
sp->in_buffer_file_pos=0;
else
{
+ if (sp->tif->tif_dir.td_stripbytecount == 0) {
+ TIFFErrorExt(sp->tif->tif_clientdata,sp->tif->tif_name,"Strip byte counts are missing");
+ return(0);
+ }
sp->in_buffer_file_togo=sp->tif->tif_dir.td_stripbytecount[sp->in_buffer_next_strile];
if (sp->in_buffer_file_togo==0)
sp->in_buffer_file_pos=0;
|