TDE
/
qt3
mirror of https://mirror.git.trinitydesktop.org/gitea/TDE/qt3
0
0
Fork 0
Code Issues Releases Wiki Activity

Check for QImage allocation failure in qasyncimageio.

Browse Source 
Since image files easily can be (or corrupt files claim to be) huge,
it is worth checking for out of memory situations.

Based on Qt5 patch for CVE-2018-19870.

Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
(cherry picked from commit a04cfea092)
r14.0.x
Slávek Banko 6 years ago
parent c966e917a9
commit ac1b4232ff
No known key found for this signature in database
GPG Key ID: 608F5293A04BE668
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File

9
src/kernel/qasyncimageio.cpp
Unescape View File

@ -964,9 +964,12 @@ int QGIFFormat::decode(QImage& img, QImageConsumer* consumer,
if (backingstore.width() < w
|| backingstore.height() < h) {
// We just use the backing store as a byte array
backingstore.create( QMAX(backingstore.width(), w),
QMAX(backingstore.height(), h),
32);
if(!backingstore.create( QMAX(backingstore.width(), w),
QMAX(backingstore.height(), h),
32)) {
state = Error;
return -1;
}
memset( img.bits(), 0, img.numBytes() );
}
for (int ln=0; ln<h; ln++) {

Write Preview
Loading…
Cancel
Save