summaryrefslogtreecommitdiff
path: root/core/fpdfapi/page/cpdf_streamparser.cpp
diff options
context:
space:
mode:
authorDan Sinclair <dsinclair@chromium.org>2017-04-25 16:15:34 -0400
committerChromium commit bot <commit-bot@chromium.org>2017-04-26 17:06:44 +0000
commit2e2a4fcd43677c5882dcf00cb4b99635cb2cfcd3 (patch)
treeeacbaae6b0e292938139766030378ab037c62003 /core/fpdfapi/page/cpdf_streamparser.cpp
parent2bbb55162f0c9490a2085ed6eaa38038a7605609 (diff)
downloadpdfium-2e2a4fcd43677c5882dcf00cb4b99635cb2cfcd3.tar.xz
Guard against overflow in CFX_BilinearMatrix code.
If any of the values in the matrix used to initialize the CFX_BilinearMatrix are close to INT_MAX then the numbers can overflow when multipled causing undefined behaviour. This Cl uses a pdfium::CheckedNumeric to handle the multiplications and then assigns back to the int value if valid. Bug: chromium:702041 Change-Id: Ia1895e2e39c0ac2bf099d45f97e33209cb50d134 Reviewed-on: https://pdfium-review.googlesource.com/4495 Reviewed-by: Tom Sepez <tsepez@chromium.org> Commit-Queue: dsinclair <dsinclair@chromium.org>
Diffstat (limited to 'core/fpdfapi/page/cpdf_streamparser.cpp')
0 files changed, 0 insertions, 0 deletions