Fork of openjpeg library for JPEG2000 encoding and decoding https://git.carlh.net/cgit/openjpeg/atom?h=master 2024-02-28T15:23:43Z 2024-02-28T15:23:43Z Stefan Weil sw@weilnetz.de 2024-02-28T14:28:51Z urn:sha1:20ad29f497cf1afacb243c0019069ba10a0320bd Signed-off-by: Stefan Weil <sw@weilnetz.de> 2021-10-21T12:13:58Z Even Rouault even.rouault@spatialys.com 2021-10-21T10:43:50Z urn:sha1:0b5d62684fe360e098e3bccaef02ee3e9781cec4 in opj_image_comp and opj_image_comptparm structures. bpp was redundant with prec, and almost never set by the library, except by opj_image_create(). This change should hopefully not impact existing, working, users of the API, which should already have used prec to get things working. Fixes #1379 2019-04-15T08:10:18Z Young Xiao YangX92@hotmail.com 2019-03-16T12:09:59Z urn:sha1:3aef207f90e937d4931daf6d411e092f76d82e66 2019-04-15T08:10:18Z Young Xiao YangX92@hotmail.com 2019-03-16T11:57:27Z urn:sha1:21399f6b7d318fcdf4406d5e88723c4922202aa3 width/length dimensions read from bmp headers are not necessarily valid. For instance they may have been maliciously set to very large values with the intention to cause DoS (large memory allocation, stack overflow). In these cases we want to detect the invalid size as early as possible. This commit introduces a counter which verifies that the number of written bytes corresponds to the advertized width/length. See commit 8ee335227bbc for details. Signed-off-by: Young Xiao <YangX92@hotmail.com> 2018-12-14T04:10:35Z Hugo Lefeuvre hle@debian.org 2018-12-14T03:58:40Z urn:sha1:8ee335227bbcaf1614124046aa25e53d67b11ec3 width/length dimensions read from bmp headers are not necessarily valid. For instance they may have been maliciously set to very large values with the intention to cause DoS (large memory allocation, stack overflow). In these cases we want to detect the invalid size as early as possible. This commit introduces a counter which verifies that the number of written bytes corresponds to the advertized width/length. Fixes #1059 (CVE-2018-6616). 2018-10-31T19:44:30Z Stefan Weil sw@weilnetz.de 2018-10-31T19:44:30Z urn:sha1:948332e6ed17565100d1df5f6fdbf66865218e36 * Fix some potential overflow issues Put sizeof to the beginning of the multiplication to enforce that size_t instead of smaller integer types is used for the calculation. This fixes warnings from LGTM: Multiplication result may overflow 'unsigned int' before it is converted to 'unsigned long'. It also allows removing some type casts. Signed-off-by: Stefan Weil <sw@weilnetz.de> * Fix code indentation Signed-off-by: Stefan Weil <sw@weilnetz.de> 2018-09-22T18:51:50Z Hugo Lefeuvre hle@debian.org 2018-09-22T18:33:19Z urn:sha1:ca16fe55014c57090dd97369256c7657aeb25975 In the case where a BMP file declares compression 3 (BI_BITFIELDS) with header size <= 56, all bitmask values keep their initialization value 0. This may lead to various undefined behavior later e.g. when doing 1 << (l_comp->prec - 1). This issue does not affect files with bit count 16 because of a check added in 16240e2 which sets default values to the color masks if they are all 0. This commit adds similar checks for the 32 bit case. Also, if a BMP file declares compression 3 with header size >= 56 and intentional 0 bitmasks, the same issue will be triggered in both the 16 and 32 bit count case. This commit adds checks to bmp_read_info_header() rejecting BMP files with "intentional" 0 bitmasks. These checks might be removed in the future when proper handling of zero bitmasks will be available in openjpeg2. fixes #1057 (CVE-2018-5785) 2017-08-18T08:16:38Z Even Rouault even.rouault@spatialys.com 2017-08-18T08:16:38Z urn:sha1:5597522cac96b1bc6d48a447751b1c6049248eef 2017-08-14T15:26:58Z Even Rouault even.rouault@spatialys.com 2017-08-14T15:26:58Z urn:sha1:baf0c1ad4572daa89caa3b12985bdd93530f0dd7 2017-08-09T07:42:30Z Even Rouault even.rouault@spatialys.com 2017-08-09T07:42:30Z urn:sha1:5a560ebf5138ebc241e9962306ce74bfc50fc69c