prevent to allocate a big chunk of memory on corrupted LUT

mm2 · mm2 · commit 5b083856e928 · 2023-04-17T15:23:53.000+02:00
Overflow here is harmless, but caller code may try to allocate a big chunk of memory, which will be immediatly freed because file size does not match.
diff --git a/src/cmslut.c b/src/cmslut.c
@@ -475,6 +475,9 @@ cmsUInt32Number CubeSize(const cmsUInt32Number Dims[], cmsUInt32Number b)
         if (rv > UINT_MAX / dim) return 0;
     }
 
+    // Again, prevent overflow
+    if (rv > UINT_MAX / 15) return 0;
+
     return rv;
 }
 

Original file line number	Diff line number	Diff line change
`@@ -475,6 +475,9 @@ cmsUInt32Number CubeSize(const cmsUInt32Number Dims[], cmsUInt32Number b)`
`475`	`475`	`if (rv > UINT_MAX / dim) return 0;`
`476`	`476`	`}`
`477`	`477`
	`478`	`+ // Again, prevent overflow`
	`479`	`+ if (rv > UINT_MAX / 15) return 0;`
	`480`	`+`
`478`	`481`	`return rv;`
`479`	`482`	`}`
`480`	`483`