From d07bc24c915c0830ed41907d8ebfe53281fd210e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Sl=C3=A1vek=20Banko?= Date: Sat, 23 May 2015 18:48:53 +0200 Subject: Fix security issue CVE-2015-1860 [taken from RedHat Qt3 patches] (cherry picked from commit 094708c0e7379cbc825488cd6101c6b8a610302a) --- src/kernel/qasyncimageio.cpp | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/kernel/qasyncimageio.cpp b/src/kernel/qasyncimageio.cpp index 489d69af2..e26ef399d 100644 --- a/src/kernel/qasyncimageio.cpp +++ b/src/kernel/qasyncimageio.cpp @@ -1226,6 +1226,8 @@ void TQGIFFormat::fillRect(TQImage& img, int col, int row, int w, int h, TQRgb c void TQGIFFormat::nextY(TQImage& img, TQImageConsumer* consumer) { + if (out_of_bounds) + return; int my; switch (interlace) { case 0: -- cgit v1.2.1