Google Git
Sign in
fuchsia / third_party / libpng / a4b26efa1fc3410ac7f1dee716c919738bce6f82
commita4b26efa1fc3410ac7f1dee716c919738bce6f82[log] [tgz]
authorJohn Bowler <jbowler@acm.org>Sat Jun 11 10:04:28 2016 -0700
committerJohn Bowler <jbowler@acm.org>Sat Jun 11 10:04:28 2016 -0700
treed32dcbf59b0c40d8ef4590f5f3db902a478fb021
parented6db9d86b2aa32c616c96701da3b8d3bfe7c2c9 [diff]
Change image size checks

This covers the case where PNG_IMAGE_BUFFER_SIZE can overflow in the application
as a result of the application using an increased 'row_stride'; previously
png_image_finish_read only checked for overflow on the base calculation of
components.  (I.e. it checked for overflow of a 32-bit number on the total
number of pixel components in the output format, not the possibly padded row
length and not the number of bytes, which for linear formats is twice the number
of components.)

Signed-off-by: John Bowler <jbowler@acm.org>
1 file changed
tree: d32dcbf59b0c40d8ef4590f5f3db902a478fb021
  1. arm/
  2. contrib/
  3. projects/
  4. scripts/
  5. tests/
  6. ANNOUNCE
  7. autogen.sh
  8. CHANGES
  9. CMakeLists.txt
  10. configure.ac
  11. example.c
  12. INSTALL
  13. libpng-config.in
  14. libpng-manual.txt
  15. libpng.3
  16. libpng.pc.in
  17. libpngpf.3
  18. LICENSE
  19. Makefile.am
  20. png.5
  21. png.c
  22. png.h
  23. pngbar.jpg
  24. pngbar.png
  25. pngconf.h
  26. pngdebug.h
  27. pngerror.c
  28. pngget.c
  29. pnginfo.h
  30. pngmem.c
  31. pngnow.png
  32. pngpread.c
  33. pngpriv.h
  34. pngread.c
  35. pngrio.c
  36. pngrtran.c
  37. pngrutil.c
  38. pngset.c
  39. pngstruct.h
  40. pngtest.c
  41. pngtest.png
  42. pngtrans.c
  43. pngusr.dfa
  44. pngwio.c
  45. pngwrite.c
  46. pngwtran.c
  47. pngwutil.c
  48. README
  49. TODO