[cups-devel] [LOW] STR #4551: Buffer overflow in cupsRasterReadPixels

Michael Sweet noreply at cups.org
Tue Feb 17 04:15:35 PST 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

DO NOT REPLY TO THIS MESSAGE.  INSTEAD, POST ANY RESPONSES TO THE LINK BELOW.

[STR Resolved]

Please file a new bug to track that change; we can certainly add a bpp
check (or probably a check of both cupsBitsPerColor and cupsBitsPerPixel,
which is what we use to calculate bpp), but without such a change all
you'll manage to do is either crash the filter or (if for some reason the
filter catches SIGFPE - I'm not aware of any that do) fail on the first
read of 0 bytes.

Link: https://www.cups.org/str.php?L4551
Version: 2.0.1
Fix Version: 2.1-current (r12452)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)
Comment: GPGTools - https://gpgtools.org
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=JB/C
-----END PGP SIGNATURE-----




More information about the cups mailing list