Skip to content

Commit 3e52dab

Browse files
committed
img2txt: fix an integer overflow in the BMP loader.
Fixes: #37 (CVE-2018-20545) Fixes: #40 (CVE-2018-20548) Fixes: #41 (CVE-2018-20549)
1 parent 84bd155 commit 3e52dab

File tree

1 file changed

+5
-5
lines changed

1 file changed

+5
-5
lines changed

Diff for: src/common-image.h

+5-5
Original file line numberDiff line numberDiff line change
@@ -1,19 +1,19 @@
11
/*
22
* Imaging tools for cacaview and img2irc
3-
* Copyright (c) 2003-2012 Sam Hocevar <sam@hocevar.net>
4-
* All Rights Reserved
3+
* Copyright © 2003—2018 Sam Hocevar <sam@hocevar.net>
4+
* All Rights Reserved
55
*
66
* This program is free software. It comes without any warranty, to
77
* the extent permitted by applicable law. You can redistribute it
88
* and/or modify it under the terms of the Do What the Fuck You Want
9-
* to Public License, Version 2, as published by Sam Hocevar. See
10-
* http://www.wtfpl.net/ for more details.
9+
* to Public License, Version 2, as published by the WTFPL Task Force.
10+
* See http://www.wtfpl.net/ for more details.
1111
*/
1212

1313
struct image
1414
{
1515
char *pixels;
16-
unsigned int w, h;
16+
size_t w, h;
1717
struct caca_dither *dither;
1818
void *priv;
1919
};

0 commit comments

Comments
 (0)