TicketNo:DTS2020081302683

Description:fix CVE-2018-14048.It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image. https://nvd.nist.gov/vuln/detail/CVE-2018-140480 https://github.com/glennrp/libpng/pull/290/commits/6b16211b552a21e1c640bdeaf072ed6df43c3f55 Team:OTHERS Feature or Bugfix:Bugfix Binary Source:No PrivateCode(Yes/No):No Change-Id: I762f59767b070f5c6a98b3604cdc6cb69081575b Reviewed-on: http://mgit-tm.rnd.huawei.com/10448035Tested-by: N public jenkins <public_jenkins@notesmail.huawei.com> Reviewed-by: N liqiang 00425722 <liqiang121@huawei.com> Reviewed-by: N zhaopeng 00380337 <zhaopeng22@huawei.com>

TicketNo:DTS2020081302683
Description:fix CVE-2018-14048.It is a SEGV in the function png_free_data in png.c, related to the recommended error handling for png_read_image. https://nvd.nist.gov/vuln/detail/CVE-2018-140480 https://github.com/glennrp/libpng/pull/290/commits/6b16211b552a21e1c640bdeaf072ed6df43c3f55 Team:OTHERS Feature or Bugfix:Bugfix Binary Source:No PrivateCode(Yes/No):No Change-Id: I762f59767b070f5c6a98b3604cdc6cb69081575b Reviewed-on: http://mgit-tm.rnd.huawei.com/10448035Tested-by: N public jenkins <public_jenkins@notesmail.huawei.com> Reviewed-by: N liqiang 00425722 <liqiang121@huawei.com> Reviewed-by: N zhaopeng 00380337 <zhaopeng22@huawei.com>
b5f3c212 · g00454901 · public tcshversion · 8edc2d3f · b5f3c212
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

contrib/tools/pngcp.c contrib/tools/pngcp.c +1 -1

未找到文件。
--- a/contrib/tools/pngcp.c
+++ b/contrib/tools/pngcp.c
@@ -506,7 +506,7 @@ static void
 display_clean_read(struct display *dp)
 {
   if (dp->read_pp != NULL)
-      png_destroy_read_struct(&dp->read_pp, NULL, NULL);
+      png_destroy_read_struct(&dp->read_pp, (dp->ip!=NULL ? &dp->ip : NULL), NULL);

   if (dp->fp != NULL)
   {