ChangeLog.md: List CVE ID fixed by 9f756bc6
This commit is contained in:
DRC
13
ChangeLog.md
13
ChangeLog.md
@@ -8,12 +8,13 @@ subsampling, which allows losslessly transposed or rotated 4:1:1 JPEG images to
|
|||||||
be losslessly cropped, partially decompressed, or decompressed to planar YUV
|
be losslessly cropped, partially decompressed, or decompressed to planar YUV
|
||||||
images.
|
images.
|
||||||
|
|
||||||
2. Fixed various segfaults and buffer overruns that occurred when attempting to
|
2. Fixed various segfaults and buffer overruns (CVE-2023-2804) that occurred
|
||||||
decompress various specially-crafted malformed 12-bit-per-component lossless
|
when attempting to decompress various specially-crafted malformed
|
||||||
JPEG images. These issues were caused by out-of-range sample values that were
|
12-bit-per-component lossless JPEG images. These issues were caused by
|
||||||
not range-limited before being used as array indices. The issues were specific
|
out-of-range sample values that were not range-limited before being used as
|
||||||
to 12-bit data precision, since that is the only data precision for which the
|
array indices. The issues were specific to 12-bit data precision, since that
|
||||||
range of the sample data type exceeds the valid sample range.
|
is the only data precision for which the range of the sample data type exceeds
|
||||||
|
the valid sample range.
|
||||||
|
|
||||||
3. Fixed an oversight in 1.4 beta1[8] that caused various segfaults and buffer
|
3. Fixed an oversight in 1.4 beta1[8] that caused various segfaults and buffer
|
||||||
overruns when attempting to decompress various specially-crafted malformed
|
overruns when attempting to decompress various specially-crafted malformed
|
||||||
|
|||||||
Reference in New Issue
Block a user