Security: double-free in opj_tcd_code_block_dec_deallocate

[gcode-importer]

Originally reported on Google Code with ID 391

 issue 413447: Security: double-free in opj_tcd_code_block_dec_deallocate
    http://code.google.com/p/chromium/issues/detail?id=413447

Reported by detonin on 2014-09-17 09:03:55

[gcode-importer]

Reported by detonin on 2014-09-17 09:17:09

• Labels added: OpjVersion-2.x

[gcode-importer]

Antonin,

I wasn't able to reproduce (using ASAN options provided by chromium). So code review
patch only.
Tested against test suite OK

Reported by mayeut on 2014-09-20 13:11:07

---

- _Attachment: [0.jp2](https://storage.googleapis.com/google-code-attachments/openjpeg/issue-391/comment-2/0.jp2)_ - _Attachment: [issue391.patch](https://storage.googleapis.com/google-code-attachments/openjpeg/issue-391/comment-2/issue391.patch)_

[gcode-importer]

Antonin,

Could you please review & apply.

Reported by mayeut on 2014-09-27 13:16:18

• Status changed: Verified

[gcode-importer]

+ cc Bo Xu from Foxit 

... so that you can follow what happens on these issues.

Reported by detonin on 2014-09-28 21:18:37

[gcode-importer]

This issue was updated by revision r2887.

Reported by detonin on 2014-09-29 12:07:15

[gcode-importer]

Not yet closed as we still need to check if it does not fail with ASan anymore

Reported by detonin on 2014-09-29 12:07:53

[gcode-importer]

Update PDFium to r2891 and this one is fixed.

Reported by bo_xu@foxitsoftware.com on 2014-09-30 17:35:50

[gcode-importer]

kdu_expand -i ../../data/issue391/0.jp2 -o 0.bmp
Kakadu Error:
Unable to find the compositing layer identified by your `-jpx_layer' argument. 
Note that the first layer in the file has an index of 0.

Reported by mayeut on 2014-09-30 19:47:59

[gcode-importer]

Reported by detonin on 2014-10-01 10:04:22

• Status changed: Fixed