third_party/libopenjpeg20/pi.c - Issue 1590593002: Merge to XFA: openjpeg: Fix potential bad precno value in opj_pi_next* functions.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: third_party/libopenjpeg20/pi.c

Issue 1590593002: Merge to XFA: openjpeg: Fix potential bad precno value in opj_pi_next* functions. (Closed) Base URL: https://pdfium.googlesource.com/pdfium.git@xfa

Patch Set: Created 4 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: third_party/libopenjpeg20/pi.c

diff --git a/third_party/libopenjpeg20/pi.c b/third_party/libopenjpeg20/pi.c

index 06f1e411572a33274a180a040e1f2f4dec9ecc2e..462e07c8366382940cc25ae11808b8f205cbaaaa 100644

--- a/third_party/libopenjpeg20/pi.c

+++ b/third_party/libopenjpeg20/pi.c

@@ -377,6 +377,9 @@ if (!pi->tp_on){

prcj = opj_int_floordivpow2(opj_int_ceildiv(pi->y, (OPJ_INT32)(comp->dy << levelno)), (OPJ_INT32)res->pdy)

- opj_int_floordivpow2(try0, (OPJ_INT32)res->pdy);

pi->precno = (OPJ_UINT32)(prci + prcj * (OPJ_INT32)res->pw);

+ if (pi->precno >= res->pw * res->ph) {

+ return OPJ_FALSE;

+ }

for (pi->layno = pi->poc.layno0; pi->layno < pi->poc.layno1; pi->layno++) {

index = pi->layno * pi->step_l + pi->resno * pi->step_r + pi->compno * pi->step_c + pi->precno * pi->step_p;

if (!pi->include[index]) {

@@ -458,6 +461,9 @@ static OPJ_BOOL opj_pi_next_pcrl(opj_pi_iterator_t * pi) {

prcj = opj_int_floordivpow2(opj_int_ceildiv(pi->y, (OPJ_INT32)(comp->dy << levelno)), (OPJ_INT32)res->pdy)

- opj_int_floordivpow2(try0, (OPJ_INT32)res->pdy);

pi->precno = (OPJ_UINT32)(prci + prcj * (OPJ_INT32)res->pw);

+ if (pi->precno >= res->pw * res->ph) {

+ return OPJ_FALSE;

+ }

for (pi->layno = pi->poc.layno0; pi->layno < pi->poc.layno1; pi->layno++) {

index = pi->layno * pi->step_l + pi->resno * pi->step_r + pi->compno * pi->step_c + pi->precno * pi->step_p;

if (!pi->include[index]) {

@@ -537,6 +543,9 @@ static OPJ_BOOL opj_pi_next_cprl(opj_pi_iterator_t * pi) {

prcj = opj_int_floordivpow2(opj_int_ceildiv(pi->y, (OPJ_INT32)(comp->dy << levelno)), (OPJ_INT32)res->pdy)

- opj_int_floordivpow2(try0, (OPJ_INT32)res->pdy);

pi->precno = (OPJ_UINT32)(prci + prcj * (OPJ_INT32)res->pw);

+ if (pi->precno >= res->pw * res->ph) {

+ return OPJ_FALSE;

+ }

for (pi->layno = pi->poc.layno0; pi->layno < pi->poc.layno1; pi->layno++) {

index = pi->layno * pi->step_l + pi->resno * pi->step_r + pi->compno * pi->step_c + pi->precno * pi->step_p;

if (!pi->include[index]) {

« no previous file with comments | « third_party/libopenjpeg20/README.pdfium ('k') | no next file » | no next file with comments »