Blender Git Commit Log

Git Commits -> Revision 6e6a6cd

Revision 6e6a6cd by Kent Mein (master)
April 15, 2008, 15:52 (GMT)
This fixes a Buffer Overflow Vulnerability reported by
Secunia Research

SAID: SA29818 (http://secunia.com/advisories/29818/)
Credit: Stefan Cornelius, Secunia Research

The old code trys to do a sscanf %s %d %s %d from a line in the
image file.

Now it copies over that line to a max buffer of size 540 chars before doing
the sscanf.
(I just picked a constant that was siginficatly large)

It also checks to see if it gets all 4 values if not return NULL.

Kent

Commit Details:

Full Hash: 6e6a6cdf553920c37f22746a0063bf3250f09634
SVN Revision: 14432
Parent Commit: e971f84
Lines Changed: +5, -1

1 Modified Path:

/source/blender/imbuf/intern/radiance_hdr.c (+5, -1) (Diff)
By: Miika HämäläinenLast update: Nov-07-2014 14:18MiikaHweb | 2003-2021