Opened 14 years ago
Closed 14 years ago
#3298 closed defect (fixed)
PCIDSK2Band::SetColorTable() vulnerabilities
Reported by: | Even Rouault | Owned by: | warmerdam |
---|---|---|---|
Priority: | normal | Milestone: | 1.7.0 |
Component: | GDAL_Raster | Version: | svn-trunk |
Severity: | normal | Keywords: | PCIDSK |
Cc: |
Description
2 problems :
- we don't check if poCT == NULL, which is valid now, which causes a segfault
- if poCT->GetColorEntryCount() > 256, a stack buffer overflow will occur
Change History (1)
comment:1 by , 14 years ago
Component: | default → GDAL_Raster |
---|---|
Milestone: | → 1.7.0 |
Resolution: | → fixed |
Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
Both issues fixed in trunk (r18364).
Thanks Even.