Here's a fix for CVE-2015-4696
--- libwmf-0.2.8.4/src/player/meta.h +++ libwmf-0.2.8.4/src/player/meta.h + if (FR->region_clip) FR->region_clip (API,&polyrect); + wmf_free (API,polyrect.TL); wmf_free (API,polyrect.BR); } @@ -2593,9 +2595,10 @@ polyrect.BR = 0; polyrect.count = 0; + + if (FR->region_clip) FR->region_clip (API,&polyrect); } - if (FR->region_clip) FR->region_clip (API,&polyrect); return (changed); }
