)]}'
{
  "commit": "d91ef173878574803000e455d882092cdd4f7104",
  "tree": "ea1d43432ed7a249be66eee71468a6339b7c7755",
  "parents": [
    "ceaa31b826614b69a1f8d2f1149186d9491a9ac0"
  ],
  "author": {
    "name": "Hui Yingst",
    "email": "nigi@chromium.org",
    "time": "Thu Jul 14 18:50:38 2022 +0000"
  },
  "committer": {
    "name": "Pdfium LUCI CQ",
    "email": "pdfium-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "time": "Thu Jul 14 18:50:38 2022 +0000"
  },
  "message": "Avoid integer overflow in CPDF_ToUnicodeMap::HandleBeginBFRange()\n\nIn CPDF_ToUnicodeMap::HandleBeginBFRange(), there are 3 for-loops\nwhich increase `code` values in the range between `lowcode` and\n`highcode`. If `highcode` is 0xffffffff, the \"code++\" operation will\ncause integer overflow and these for-loops will never be terminated.\n\nMake `code` FX_SAFE_UINT32 type so that its value can be validated\nfor each for-loop to avoid integer overflow.\n\nBug: chromium:1343510\nChange-Id: Icb8221ce026fade90b01151c6f675b9a4d3b2f2b\nReviewed-on: https://pdfium-review.googlesource.com/c/pdfium/+/95310\nCommit-Queue: Nigi \u003cnigi@chromium.org\u003e\nReviewed-by: Lei Zhang \u003cthestig@chromium.org\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "4fa92bfe285187d3d82393eea847b4bb13f67cba",
      "old_mode": 33188,
      "old_path": "core/fpdfapi/font/cpdf_tounicodemap.cpp",
      "new_id": "4ec5a3c0dc4ed503de4674e93ae2f5b23212868b",
      "new_mode": 33188,
      "new_path": "core/fpdfapi/font/cpdf_tounicodemap.cpp"
    },
    {
      "type": "modify",
      "old_id": "7dacc5a4ec330bc3ac70ff58a877d550da3e945a",
      "old_mode": 33188,
      "old_path": "core/fpdfapi/font/cpdf_tounicodemap_unittest.cpp",
      "new_id": "48e7c2fec3467f298c085e44bfa0ba9aaee47a48",
      "new_mode": 33188,
      "new_path": "core/fpdfapi/font/cpdf_tounicodemap_unittest.cpp"
    }
  ]
}
