Google Git
Sign in
android / platform / external / libexif / 1e187b62682ffab5003c702657d6d725b4278f16
commit1e187b62682ffab5003c702657d6d725b4278f16[log] [tgz]
authorShuzhen Wang <shuzhenwang@google.com>Tue Feb 25 10:48:03 2020 -0800
committerShuzhen Wang <shuzhenwang@google.com>Mon Mar 02 10:03:15 2020 -0800
treee84059f873dd8646b8fb308ca9748fc8d6825a0c
parent1a6756b78ad1c7fca57cb8521081fc01181e8f83 [diff]
libexif: Fix unsigned integer overflow

(offset + 2) itself may overflow if offset is larger than UINT_MAX-2.
Refactor the code to avoid the overflow.

Test: adb shell /data/fuzz/$(get_build_var TARGET_ARCH)/libexif_fuzzer/libexif_fuzzer /data/tmp/test-case
Bug: 146428941
Change-Id: I2a7bb04002f166c92247f0e8abe1c5b826b29cb1
1 file changed
tree: e84059f873dd8646b8fb308ca9748fc8d6825a0c
  1. auto-m4/
  2. binary/
  3. contrib/
  4. doc/
  5. libexif/
  6. m4m/
  7. po/
  8. test/
  9. ABOUT-NLS
  10. aclocal.m4
  11. Android.bp
  12. AUTHORS
  13. ChangeLog
  14. config.guess
  15. config.h
  16. config.h.in
  17. config.rpath
  18. config.sub
  19. configure
  20. configure.ac
  21. COPYING
  22. depcomp
  23. INSTALL
  24. install-sh
  25. libexif-uninstalled.pc.in
  26. libexif.pc.in
  27. libexif.spec
  28. libexif.spec.in
  29. libexif_blacklist.txt
  30. ltmain.sh
  31. Makefile.am
  32. Makefile.in
  33. missing
  34. mkinstalldirs
  35. MODULE_LICENSE_LGPL
  36. NEWS
  37. NOTICE
  38. OWNERS
  39. README
  40. README-Win32.txt
  41. README.android
  42. README.version