[gimp] SGI: sanitize input data
- From: Nils Philippsen <nphilipp src gnome org>
- To: svn-commits-list gnome org
- Cc:
- Subject: [gimp] SGI: sanitize input data
- Date: Wed, 9 Dec 2009 16:19:11 +0000 (UTC)
commit daaf1d2b97c74271d9f8cc517f16b53d0089e094
Author: Nils Philippsen <nils redhat com>
Date: Wed Dec 9 15:43:28 2009 +0100
SGI: sanitize input data
Refuse nonsensical xsize, ysize, zsize values.
plug-ins/file-sgi/sgi.c | 22 ++++++++++++++++++++++
1 files changed, 22 insertions(+), 0 deletions(-)
---
diff --git a/plug-ins/file-sgi/sgi.c b/plug-ins/file-sgi/sgi.c
index f982736..9ce8828 100644
--- a/plug-ins/file-sgi/sgi.c
+++ b/plug-ins/file-sgi/sgi.c
@@ -334,6 +334,28 @@ load_image (const gchar *filename,
* Get the image dimensions and create the image...
*/
+ /* Sanitize dimensions */
+ if (sgip->xsize == 0 || sgip->xsize > GIMP_MAX_IMAGE_SIZE)
+ {
+ g_set_error (error, G_FILE_ERROR, G_FILE_ERROR_FAILED,
+ _("Invalid width: %hu"), sgip->xsize);
+ return -1;
+ }
+
+ if (sgip->ysize == 0 || sgip->ysize > GIMP_MAX_IMAGE_SIZE)
+ {
+ g_set_error (error, G_FILE_ERROR, G_FILE_ERROR_FAILED,
+ _("Invalid height: %hu"), sgip->ysize);
+ return -1;
+ }
+
+ if (sgip->zsize == 0 || sgip->zsize > GIMP_MAX_IMAGE_SIZE)
+ {
+ g_set_error (error, G_FILE_ERROR, G_FILE_ERROR_FAILED,
+ _("Invalid number of channels: %hu"), sgip->zsize);
+ return -1;
+ }
+
bytes = sgip->zsize;
switch (sgip->zsize)
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
