Google Git
Sign in
skia / third_party / sdl / e73a5f0dff3b879bfcad79df2e44dea382fb607e
commite73a5f0dff3b879bfcad79df2e44dea382fb607e[log] [tgz]
authorSam Lantinga <slouken@libsdl.org>Mon Oct 16 14:57:42 2017 -0700
committerSam Lantinga <slouken@libsdl.org>Mon Oct 16 14:57:42 2017 -0700
tree174eab9a5bc5300a4125be4a0e98647674082f8b
parentfc917367af5ad5053044c593c6244943072db7aa [diff]
Fixed bug 3890 - Incomplete fix for CVE-2017-2888

Felix Geyer

http://hg.libsdl.org/SDL/rev/7e0f1498ddb5 tries to fix CVE-2017-2888.
Unfortunately compilers may optimize the second condition "(size / surface->pitch) != surface->h" away.
See https://bugzilla.redhat.com/show_bug.cgi?id=1500623#c2
I've verified that this is also the case on Debian unstable (gcc 7.2).
1 file changed
tree: 174eab9a5bc5300a4125be4a0e98647674082f8b
  1. acinclude/
  2. android-project/
  3. build-scripts/
  4. cmake/
  5. debian/
  6. docs/
  7. include/
  8. src/
  9. test/
  10. VisualC/
  11. VisualC-WinRT/
  12. visualtest/
  13. Xcode/
  14. Xcode-iOS/
  15. .hgignore
  16. .hgtags
  17. Android.mk
  18. autogen.sh
  19. BUGS.txt
  20. cmake_uninstall.cmake.in
  21. CMakeLists.txt
  22. configure
  23. configure.in
  24. COPYING.txt
  25. CREDITS.txt
  26. INSTALL.txt
  27. Makefile.in
  28. Makefile.minimal
  29. Makefile.pandora
  30. Makefile.psp
  31. Makefile.wiz
  32. README-SDL.txt
  33. README.txt
  34. sdl2-config.cmake.in
  35. sdl2-config.in
  36. sdl2.m4
  37. sdl2.pc.in
  38. SDL2.spec.in
  39. SDL2Config.cmake
  40. TODO.txt
  41. VisualC.html
  42. WhatsNew.txt