96b2424330
Add security fixes: openjpeg2-CVE-2016-10504.patch (CVE-2016-10504, bsc#1056351), openjpeg2-CVE-2016-10505.patch (CVE-2016-10505, bsc#1056363), openjpeg2-CVE-2016-10506.patch (CVE-2016-10506, bsc#1056396), openjpeg2-CVE-2017-12982.patch (CVE-2017-12982, bsc#1054696), openjpeg2-CVE-2017-14039.patch (CVE-2017-14039, CVE-2017-14164, bsc#1056622, bsc#1057511), openjpeg2-CVE-2017-14040.patch (CVE-2017-14040, bsc#1056621), openjpeg2-CVE-2017-14041.patch (CVE-2017-14041, bsc#1056562), openjpeg2-CVE-2017-14151.patch (CVE-2017-14151, bsc#1057336), openjpeg2-CVE-2017-14152.patch (CVE-2017-14152, bsc#1057335), most of which are critical, including heap and stack overwrites, over-reads and division by zero errors. OBS-URL: https://build.opensuse.org/request/show/523789 OBS-URL: https://build.opensuse.org/package/show/graphics/openjpeg2?expand=0&rev=28
26 lines
939 B
Diff
26 lines
939 B
Diff
diff --git a/src/lib/openjp2/j2k.c b/src/lib/openjp2/j2k.c
|
|
index 1844ac3..316b928 100644
|
|
--- a/src/lib/openjp2/j2k.c
|
|
+++ b/src/lib/openjp2/j2k.c
|
|
@@ -6104,10 +6104,16 @@ static void opj_j2k_set_cinema_parameters(opj_cparameters_t *parameters, opj_ima
|
|
|
|
/* Precincts */
|
|
parameters->csty |= 0x01;
|
|
- parameters->res_spec = parameters->numresolution-1;
|
|
- for (i = 0; i<parameters->res_spec; i++) {
|
|
- parameters->prcw_init[i] = 256;
|
|
- parameters->prch_init[i] = 256;
|
|
+ if (parameters->numresolution == 1) {
|
|
+ parameters->res_spec = 1;
|
|
+ parameters->prcw_init[0] = 128;
|
|
+ parameters->prch_init[0] = 128;
|
|
+ } else {
|
|
+ parameters->res_spec = parameters->numresolution - 1;
|
|
+ for (i = 0; i < parameters->res_spec; i++) {
|
|
+ parameters->prcw_init[i] = 256;
|
|
+ parameters->prch_init[i] = 256;
|
|
+ }
|
|
}
|
|
|
|
/* The progression order shall be CPRL */
|