graphics/gimp
graphics/gimp
1
0
Fork 0
mirror of https://gitlab.gnome.org/GNOME/gimp synced 2024-10-19 14:23:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

make sure array length values are not negative, to prevent bad calls to

Browse source 
2004-08-14  Manish Singh  <yosh@gimp.org>

        * libgimpbase/gimpprotocol.c (_gp_params_read): make sure array
        length values are not negative, to prevent bad calls to g_new.
        Addresses bug #150154.
This commit is contained in:
Manish Singh 2004-08-15 06:52:45 +00:00 committed by Manish Singh
parent 63355f333b
commit c1d5c94b03
2 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
ChangeLog
View file

@ -1,3 +1,9 @@
2004-08-14 Manish Singh <yosh@gimp.org>
* libgimpbase/gimpprotocol.c (_gp_params_read): make sure array
length values are not negative, to prevent bad calls to g_new.
Addresses bug #150154.
2004-08-14 Sven Neumann <sven@gimp.org>
* plug-ins/help/Makefile.am: no need to link gimp-help-lookup with

5
libgimpbase/gimpprotocol.c
View file

@ -1216,6 +1216,7 @@ _gp_params_read (GIOChannel *channel,
break;
case GIMP_PDB_INT32ARRAY:
(*params)[i-1].data.d_int32 = MAX(0, (*params)[i-1].data.d_int32);
(*params)[i].data.d_int32array =
g_new (gint32, (*params)[i-1].data.d_int32);
if (! wire_read_int32 (channel,
@ -1229,6 +1230,7 @@ _gp_params_read (GIOChannel *channel,
break;
case GIMP_PDB_INT16ARRAY:
(*params)[i-1].data.d_int32 = MAX(0, (*params)[i-1].data.d_int32);
(*params)[i].data.d_int16array =
g_new (gint16, (*params)[i-1].data.d_int32);
if (! wire_read_int16 (channel,
@ -1242,6 +1244,7 @@ _gp_params_read (GIOChannel *channel,
break;
case GIMP_PDB_INT8ARRAY:
(*params)[i-1].data.d_int32 = MAX(0, (*params)[i-1].data.d_int32);
(*params)[i].data.d_int8array =
g_new (gint8, (*params)[i-1].data.d_int32);
if (! wire_read_int8 (channel,
@ -1255,6 +1258,7 @@ _gp_params_read (GIOChannel *channel,
break;
case GIMP_PDB_FLOATARRAY:
(*params)[i-1].data.d_int32 = MAX(0, (*params)[i-1].data.d_int32);
(*params)[i].data.d_floatarray =
g_new (gdouble, (*params)[i-1].data.d_int32);
if (! wire_read_double (channel,
@ -1268,6 +1272,7 @@ _gp_params_read (GIOChannel *channel,
break;
case GIMP_PDB_STRINGARRAY:
(*params)[i-1].data.d_int32 = MAX(0, (*params)[i-1].data.d_int32);
(*params)[i].data.d_stringarray =
g_new0 (gchar*, (*params)[i-1].data.d_int32);
if (! wire_read_string (channel,