diff options
| author | Slávek Banko <slavek.banko@axis.cz> | 2019-11-01 01:59:59 +0100 | 
|---|---|---|
| committer | Slávek Banko <slavek.banko@axis.cz> | 2019-12-18 17:53:33 +0100 | 
| commit | cd2dc5026e152d6cf57895fe4f41cabdf2bb3eca (patch) | |
| tree | d65fa9099f13dd1604a8f46475db40253a77b96c /src/widgets/qaction.cpp | |
| parent | b90f9cb6ca34cd66f00aee1615153c88c5888452 (diff) | |
| download | tqt-cd2dc5026e152d6cf57895fe4f41cabdf2bb3eca.tar.gz tqt-cd2dc5026e152d6cf57895fe4f41cabdf2bb3eca.zip | |
Fix crash in tqimage for certain malformed ppm image filesr14.0.7
The ppm format specifies that the maximum color value field must be
less than 65536. The handler did not enforce this, leading to
potentional overflow when the value was used in 16 bits context.
Based on Qt5 patch for CVE-2018-19872.
Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
(cherry picked from commit 4470facd61b6d9fd862f70ce56f22ab502415d23)
Diffstat (limited to 'src/widgets/qaction.cpp')
0 files changed, 0 insertions, 0 deletions
