core/fpdfapi/fpdf_render/fpdf_render_loadimage.cpp - Issue 1877033003: Prevent an OOB access in CPDF_DIBSource::TranslateScanline24bpp

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: core/fpdfapi/fpdf_render/fpdf_render_loadimage.cpp

Issue 1877033003: Prevent an OOB access in CPDF_DIBSource::TranslateScanline24bpp (Closed) Base URL: https://pdfium.googlesource.com/pdfium.git@master

Patch Set: return early Created 4 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
1 // Copyright 2014 PDFium Authors. All rights reserved.	1 // Copyright 2014 PDFium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 // Original code copyright 2014 Foxit Software Inc. http://www.foxitsoftware.com	5 // Original code copyright 2014 Foxit Software Inc. http://www.foxitsoftware.com

6	6

7 #include "core/fpdfapi/fpdf_render/render_int.h"	7 #include "core/fpdfapi/fpdf_render/render_int.h"

8	8

9 #include <algorithm>	9 #include <algorithm>

10 #include <memory>	10 #include <memory>

(...skipping 900 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
911 }	911 }

912	912

913 void CPDF_DIBSource::TranslateScanline24bpp(uint8_t* dest_scan,	913 void CPDF_DIBSource::TranslateScanline24bpp(uint8_t* dest_scan,

914 const uint8_t* src_scan) const {	914 const uint8_t* src_scan) const {

915 if (m_bpc == 0) {	915 if (m_bpc == 0) {

916 return;	916 return;

917 }	917 }

918 unsigned int max_data = (1 << m_bpc) - 1;	918 unsigned int max_data = (1 << m_bpc) - 1;

919 if (m_bDefaultDecode) {	919 if (m_bDefaultDecode) {

920 if (m_Family == PDFCS_DEVICERGB \|\| m_Family == PDFCS_CALRGB) {	920 if (m_Family == PDFCS_DEVICERGB \|\| m_Family == PDFCS_CALRGB) {

	921 if (m_nComponents != 3)

	922 return;

	923

921 const uint8_t* src_pos = src_scan;	924 const uint8_t* src_pos = src_scan;

922 switch (m_bpc) {	925 switch (m_bpc) {

923 case 16:	926 case 16:

924 for (int col = 0; col < m_Width; col++) {	927 for (int col = 0; col < m_Width; col++) {

925 *dest_scan++ = src_pos[4];	928 *dest_scan++ = src_pos[4];

926 *dest_scan++ = src_pos[2];	929 *dest_scan++ = src_pos[2];

927 dest_scan++ = src_pos;	930 dest_scan++ = src_pos;

928 src_pos += 6;	931 src_pos += 6;

929 }	932 }

930 break;	933 break;

(...skipping 637 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
1568 IFX_Pause* pPause) {	1571 IFX_Pause* pPause) {

1569 return LoadHandle->Continue(pPause);	1572 return LoadHandle->Continue(pPause);

1570 }	1573 }

1571	1574

1572 CPDF_ImageLoader::~CPDF_ImageLoader() {	1575 CPDF_ImageLoader::~CPDF_ImageLoader() {

1573 if (!m_bCached) {	1576 if (!m_bCached) {

1574 delete m_pBitmap;	1577 delete m_pBitmap;

1575 delete m_pMask;	1578 delete m_pMask;

1576 }	1579 }

1577 }	1580 }

OLD	NEW

« no previous file with comments | « no previous file | no next file » | no next file with comments »