[Swfdec] [Bug 15528] jpeg decoder allocation size overflows
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Mon Sep 15 08:41:03 PDT 2008
http://bugs.freedesktop.org/show_bug.cgi?id=15528
--- Comment #7 from M Joonas Pihlaja <jpihlaja at cc.helsinki.fi> 2008-09-15 08:41:03 PST ---
Created an attachment (id=18883)
--> (http://bugs.freedesktop.org/attachment.cgi?id=18883)
bypass check to hit another malloc
This test case causes a malloc argument overflow later in the code causing
malloc to return NULL and a subsequent NULL ptr deref on both x86 and x86_64.
--
Configure bugmail: http://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
You are the assignee for the bug.
More information about the Swfdec
mailing list