android_packages_apps_Messaging - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Tom Taylor <tomtaylor@google.com>	2017-01-11 09:17:01 -0800
committer	Sean McCreary <mccreary@mcwest.org>	2017-03-22 12:50:27 -0600
commit	78cb8b00ee024cfdf383912695e30d9c2cb64f7d (patch)
tree	24492ebb7c4880364b971d4f1036ef204c6fd02f /tests
parent	62371f2e4bfe3d54f2b79fe55bbb423642a235d2 (diff)
download	android_packages_apps_Messaging-78cb8b00ee024cfdf383912695e30d9c2cb64f7d.tar.gz android_packages_apps_Messaging-78cb8b00ee024cfdf383912695e30d9c2cb64f7d.tar.bz2 android_packages_apps_Messaging-78cb8b00ee024cfdf383912695e30d9c2cb64f7d.zip

32764144 Security Vulnerability - heap buffer overflow in libgiftranscode.so

in colorMap->Colors[colorIndex] * No range checking was done on a color index. Add range checking and bail if the color index is out of range. Test: tested sending a large gif that would invoke the GifTranscoder library to make the gif smaller. Bug: 32764144 CVE-2017-0494 Change-Id: I44f36274ec333ae1960fa8fc96b2dbde35fbaa66 (cherry picked from commit 6f763fef7ab16e28f6c43496e0f866e7803b4dc8) (cherry picked from commit 3f9821128abd66c4cd2f040d8243efb334bfad2d)

Diffstat (limited to 'tests')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: