On Fri, 27 Oct 2023 05:54:04 GMT, Jayathirth D V <[email protected]> wrote:
> We skip jpeg data during decoding using imageio_skip_input_data() in both > src/java.desktop/share/native/libjavajpeg/imageioJPEG.c and > src/java.desktop/share/native/libjavajpeg/jpegdecoder.c > > We update num_bytes with sb->remaining_skip in these functions and it can > overflow. We need to add additional check for num_bytes here. > > With updated code ran all awt and imageio tests in CI and it is green. This pull request has now been integrated. Changeset: 75ce02fe Author: Jayathirth D V <[email protected]> URL: https://git.openjdk.org/jdk/commit/75ce02fe74e1232bfa8d72b4fdad82ed938ef957 Stats: 8 lines in 2 files changed: 8 ins; 0 del; 0 mod 8318951: Additional negative value check in JPEG decoding Reviewed-by: azvegint, prr ------------- PR: https://git.openjdk.org/jdk/pull/16390
