diff options
author | Tom Taylor <tomtaylor@google.com> | 2016-12-01 12:20:44 -0800 |
---|---|---|
committer | Brinly Taylor <brinly@brinly.me> | 2017-03-13 04:51:58 +0000 |
commit | f4a97c13cb076d606de10bdd068e8effff1b3646 (patch) | |
tree | d77ac2dc95d0f1cc6ba5179de33810134475ef3b /version.mk | |
parent | 39b074283ac8f72e16cf96869e6292dd7ecc3daf (diff) | |
download | packages_apps_Messaging-f4a97c13cb076d606de10bdd068e8effff1b3646.tar.gz packages_apps_Messaging-f4a97c13cb076d606de10bdd068e8effff1b3646.tar.bz2 packages_apps_Messaging-f4a97c13cb076d606de10bdd068e8effff1b3646.zip |
32322450 Security Vulnerability - heap buffer overflow in libgiftranscode.so
* No range checking was done on the background color index. Add range
checking and bail if the color index is out of range.
* Test
Manual
- tested sending the gif attached in the bug.
- tested sending a 3.5mb gif to verify the gif transcoding was taking place.
- tested on arm64, arm, and x86 devices.
Change-Id: Id16ddccf05c8472ddebc1284b2a928dafd1be551
Fixes: 32322450
(cherry picked from commit bcc1f62715f8005684ac6b798d0d54224394e975)
(cherry picked from commit 47971bccc973ed00ff9b30ce27dc28e0d2cc5cfc)
Diffstat (limited to 'version.mk')
0 files changed, 0 insertions, 0 deletions