commit | 2cbae35314d77db0eee71a1e0e830c1dd0d3f76d | [log] [tgz] |
---|---|---|
author | JUN FANG <jun_fang@foxitsoftware.com> | Sat Jan 31 10:12:50 2015 -0800 |
committer | JUN FANG <jun_fang@foxitsoftware.com> | Mon Feb 23 10:10:49 2015 -0800 |
tree | 57ba74fc68f5ec6145f14f329d9eac409e598292 | |
parent | f8105c665856863ad95da37fee6c12b98b953e2c [diff] |
Fix heap buffer overflow in CPDF_SampledFunc::v_Call This issue was caused by integer overflow in CPDF_SampledFunc::v_Call. The root cause of this issue is that the content in the test pdf file was damaged. The solution is to check whether an integer is overflow before using it. BUG=452455 R=tsepez@chromium.org Review URL: https://codereview.chromium.org/886953002