Headline
CVE-2022-2061: libnsgif: fix oob in lzw_decode · hpjansson/chafa@e6ce374
Heap-based Buffer Overflow in GitHub repository hpjansson/chafa prior to 1.12.0.
Permalink
Browse files
libnsgif: fix oob in lzw_decode
- Loading branch information
1 parent 56f1c73 commit e6ce3746cdcf0836b9dae659a5aed15d73a080d8
Showing 1 changed file with 4 additions and 0 deletions.
@@ -329,6 +329,10 @@ lzw_result lzw_decode(struct lzw_ctx *ctx,
/* Code is invalid */
return LZW_BAD_CODE;
} else if (code_new >= 1 << LZW_CODE_MAX) {
/* Don’t access out of bound */
return LZW_BAD_CODE;
} else if (code_new < current_entry) {
/* Code is in table */
code_out = code_new;
0 comments on commit e6ce374
Please sign in to comment.