packages/libexif
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
libexif/libexif-bugfix-integer-overflow.patch
orange-snn 3b673cd83c bugfix in oss-fuzz
2020-03-10 15:28:59 +08:00

26 lines
765 B
Diff
Raw Blame History

From c7c4de72c04b5b795ce8df9c49648431bd22ee7e Mon Sep 17 00:00:00 2001
From: songnannan2 <songnannan2@huawei.com>
Date: Mon, 17 Feb 2020 15:41:28 +0800
Subject: [PATCH] bugfix in Integer overflow
---
libexif/exif-loader.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/libexif-0.6.21/libexif/exif-loader.c b/libexif-0.6.21/libexif/exif-loader.c
index 317b86b..e376465 100644
--- a/libexif/exif-loader.c
+++ b/libexif/exif-loader.c
@@ -239,7 +239,7 @@ exif_loader_write (ExifLoader *eld, unsigned char *buf, unsigned int len)
break;
case EL_READ_SIZE_BYTE_24:
- eld->size |= eld->b[i] << 24;
+ eld->size |= (unsigned int)eld->b[i] << 24;
eld->state = EL_READ_SIZE_BYTE_16;
break;
case EL_READ_SIZE_BYTE_16:
--
2.19.1
Reference in New Issue View Git Blame Copy Permalink