diff options
author | Glenn Randers-Pehrson <glennrp at users.sourceforge.net> | 2016-12-29 07:48:30 -0600 |
---|---|---|
committer | Glenn Randers-Pehrson <glennrp at users.sourceforge.net> | 2016-12-29 07:48:30 -0600 |
commit | ca76407b75e648a1d62fa65dd39a2d165a487a56 (patch) | |
tree | 0e96b5bc1d00170e365f9aad6e84af97d80b1aef | |
parent | aba2535d0f309147acb8450f08ee522db7c92b65 (diff) | |
download | libpng-ca76407b75e648a1d62fa65dd39a2d165a487a56.tar.gz |
[libpng15] Fixed a potential null pointer dereference in png_set_text_2()
(bug report and patch by Patrick Keshishian)
-rw-r--r-- | ANNOUNCE | 2 | ||||
-rw-r--r-- | CHANGES | 2 | ||||
-rw-r--r-- | png.c | 1 |
3 files changed, 5 insertions, 0 deletions
@@ -49,6 +49,8 @@ Changes since the last public release (1.5.27): Since signed overflow is undefined in C90 the code has been modified to correctly calculate a signed result. This requires changing the 'hi' result parameter to a signed value. + Fixed a potential null pointer dereference in png_set_text_2() (bug report + and patch by Patrick Keshishian) Send comments/corrections/commendations to png-mng-implement at lists.sf.net (subscription required; visit @@ -4528,6 +4528,8 @@ version 1.5.28rc01 [December 27, 2016] ensure that it is correct. version 1.5.28 [December 29, 2016] + Fixed a potential null pointer dereference in png_set_text_2() (bug report + and patch by Patrick Keshishian). Send comments/corrections/commendations to png-mng-implement at lists.sf.net (subscription required; visit @@ -369,6 +369,7 @@ png_free_data(png_structp png_ptr, png_infop info_ptr, png_uint_32 mask, png_free(png_ptr, info_ptr->text); info_ptr->text = NULL; info_ptr->num_text = 0; + info_ptr->max_text = 0; } } #endif |