kwo pushed a commit to branch master.
http://git.enlightenment.org/legacy/imlib2.git/commit/?id=f6d902efd9e5a9438a0fbdc9b187e8c2ac08a01f
commit f6d902efd9e5a9438a0fbdc9b187e8c2ac08a01f
Author: Kim Woelders <k...@woelders.dk>
Date: Sat Jul 30 16:44:57 2016 +0200
PNM loader: Fix reading PNM bitmaps.
Attempting to read a PNM bitmap (ASCII format) would cause a lockup due
to infinite loop, and in certain cases write access outside allocated
memory.
Fixes CVE-2016-6348 (out-of-bounds writes ... presumably - CVE text not
disclosed yet).
Found by Neelima Krishnan, Intel Corporation.
---
src/modules/loaders/loader_pnm.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/src/modules/loaders/loader_pnm.c b/src/modules/loaders/loader_pnm.c
index 509523c..04b01b0 100644
--- a/src/modules/loaders/loader_pnm.c
+++ b/src/modules/loaders/loader_pnm.c
@@ -179,6 +179,7 @@ load(ImlibImage * im, ImlibProgressFunction progress,
goto quit_error;
ptr2++;
i++;
+ x++;
}
}
if (progress &&
--
