Fix buffer overflow vulnerability in curve, font, particles code.
authorBrecht Van Lommel <brechtvanlommel@gmail.com>
Mon, 15 Jan 2018 05:57:26 +0000 (06:57 +0100)
committerBrecht Van Lommel <brechtvanlommel@gmail.com>
Wed, 17 Jan 2018 23:54:07 +0000 (00:54 +0100)
commite6df02861e17f75d4dd243776f35208681b78465
treeb4ebbb1f9752f3cab8ada017f40d91172971915a
parente04d7c49dca9dc7bbf1cbe446b612aaa5ba12581
Fix buffer overflow vulnerability in curve, font, particles code.

Solves these security issues from T52924:
CVE-2017-12102
CVE-2017-12103
CVE-2017-12104

While the specific overflow issue may be fixed, loading the repro .blend
files may still crash because they are incomplete and corrupt. The way
they crash may be impossible to exploit, but this is difficult to prove.

Differential Revision: https://developer.blender.org/D3002
source/blender/blenkernel/BKE_particle.h
source/blender/blenkernel/intern/curve.c
source/blender/blenkernel/intern/font.c
source/blender/blenkernel/intern/particle.c
source/blender/blenloader/intern/readfile.c
source/blender/editors/space_view3d/drawobject.c
source/blender/makesdna/DNA_curve_types.h