1. libgd
  2. Untitled project
  3. gd-libgd

Commits

Ondřej Surý  committed f4ee9d6

CVE-2009-3546: buffer overflow or buffer over-read attacks via a crafted GD file

  • Participants
  • Parent commits 5b7b81f
  • Branches GD-2.0

Comments (0)

Files changed (1)

File src/gd_gd.c

View file
  • Ignore whitespace
 	    {
 	      goto fail1;
 	    }
+	  if (im->colorsTotal > gdMaxColors)
+	    {
+	      goto fail1;
+	    }
 	}
       /* Int to accommodate truecolor single-color transparency */
       if (!gdGetInt (&im->transparent, in))