Fix buffer overflows in TIFF, PNG, IRIS, DPX, HDR and AVI loading.
authorBrecht Van Lommel <brechtvanlommel@gmail.com>
Sun, 14 Jan 2018 13:19:57 +0000 (14:19 +0100)
committerBrecht Van Lommel <brechtvanlommel@gmail.com>
Wed, 17 Jan 2018 18:59:47 +0000 (19:59 +0100)
commitd30cc1ea0b9ba64d8a1e22105528b6cb8077692c
tree8064a8a4e305a042a8e5d6efbf26b917ca189a3e
parenta6700362c71c3978acd53762e1f2e11e7f7a38b5
Fix buffer overflows in TIFF, PNG, IRIS, DPX, HDR and AVI loading.

Solves these security issues from T52924:
CVE-2017-2899
CVE-2017-2900
CVE-2017-2901
CVE-2017-2902
CVE-2017-2903
CVE-2017-2904
CVE-2017-2905
CVE-2017-2906
CVE-2017-2907
CVE-2017-2918

Differential Revision: https://developer.blender.org/D2999
20 files changed:
source/blender/avi/CMakeLists.txt
source/blender/avi/intern/avi.c
source/blender/avi/intern/avi_codecs.c
source/blender/avi/intern/avi_intern.h
source/blender/avi/intern/avi_mjpeg.c
source/blender/avi/intern/avi_mjpeg.h
source/blender/avi/intern/avi_rgb.c
source/blender/avi/intern/avi_rgb.h
source/blender/avi/intern/avi_rgb32.c
source/blender/avi/intern/avi_rgb32.h
source/blender/imbuf/IMB_imbuf.h
source/blender/imbuf/intern/allocimbuf.c
source/blender/imbuf/intern/bmp.c
source/blender/imbuf/intern/cineon/dpxlib.c
source/blender/imbuf/intern/cineon/logImageCore.c
source/blender/imbuf/intern/cineon/logImageCore.h
source/blender/imbuf/intern/iris.c
source/blender/imbuf/intern/png.c
source/blender/imbuf/intern/radiance_hdr.c
source/blender/imbuf/intern/tiff.c