diff options
author | Dan Sinclair <dsinclair@chromium.org> | 2017-04-25 16:15:34 -0400 |
---|---|---|
committer | Chromium commit bot <commit-bot@chromium.org> | 2017-04-26 17:06:44 +0000 |
commit | 2e2a4fcd43677c5882dcf00cb4b99635cb2cfcd3 (patch) | |
tree | eacbaae6b0e292938139766030378ab037c62003 /third_party/libtiff/tif_write.c | |
parent | 2bbb55162f0c9490a2085ed6eaa38038a7605609 (diff) | |
download | pdfium-2e2a4fcd43677c5882dcf00cb4b99635cb2cfcd3.tar.xz |
Guard against overflow in CFX_BilinearMatrix code.
If any of the values in the matrix used to initialize the
CFX_BilinearMatrix are close to INT_MAX then the numbers can overflow
when multipled causing undefined behaviour.
This Cl uses a pdfium::CheckedNumeric to handle the multiplications and
then assigns back to the int value if valid.
Bug: chromium:702041
Change-Id: Ia1895e2e39c0ac2bf099d45f97e33209cb50d134
Reviewed-on: https://pdfium-review.googlesource.com/4495
Reviewed-by: Tom Sepez <tsepez@chromium.org>
Commit-Queue: dsinclair <dsinclair@chromium.org>
Diffstat (limited to 'third_party/libtiff/tif_write.c')
0 files changed, 0 insertions, 0 deletions