splash/Splash.cc | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-)
New commits: commit 710534c7229c42c85038b4263fc67f4ff4a94182 Author: Albert Astals Cid <[email protected]> Date: Tue Oct 16 19:58:27 2018 +0200 Check for overflow in Splash::scaleImageYdXd oss-fuzz/11006 diff --git a/splash/Splash.cc b/splash/Splash.cc index eb2c909c..18a40675 100644 --- a/splash/Splash.cc +++ b/splash/Splash.cc @@ -4241,7 +4241,10 @@ void Splash::scaleImageYdXd(SplashImageSource src, void *srcData, xq = srcWidth % scaledWidth; // allocate buffers - lineBuf = (Guchar *)gmallocn(srcWidth, nComps); + lineBuf = (Guchar *)gmallocn_checkoverflow(srcWidth, nComps); + if (unlikely(!lineBuf)) { + return; + } pixBuf = (Guint *)gmallocn_checkoverflow(srcWidth, nComps * sizeof(int)); if (unlikely(!pixBuf)) { gfree(lineBuf); _______________________________________________ poppler mailing list [email protected] https://lists.freedesktop.org/mailman/listinfo/poppler
