OpenEXR/CVE-2021-20300.patch

diff -Naru openexr-2.2.0/IlmImf/ImfHuf.cpp openexr-2.2.0-new/IlmImf/ImfHuf.cpp
--- openexr-2.2.0/IlmImf/ImfHuf.cpp	2022-07-15 11:20:21.474483000 +0800
+++ openexr-2.2.0-new/IlmImf/ImfHuf.cpp	2022-07-15 11:21:53.484077000 +0800
@@ -1068,7 +1068,9 @@
 
     const char *ptr = compressed + 20;
 
-    if ( ptr + (nBits+7 )/8 > compressed+nCompressed)
+    uint64_t nBytes = (static_cast<uint64_t>(nBits)+7) / 8 ;
+
+    if ( ptr + nBytes > compressed+nCompressed)
     {
         notEnoughData();
         return;
fix CVE-2021-20300 CVE-2021-20302 CVE-2021-3933 (cherry picked from commit 039a67120ac7283a3a2592a2a78a044b2105334c) 2022-07-15 16:53:05 +08:00			`diff -Naru openexr-2.2.0/IlmImf/ImfHuf.cpp openexr-2.2.0-new/IlmImf/ImfHuf.cpp`
			`--- openexr-2.2.0/IlmImf/ImfHuf.cpp 2022-07-15 11:20:21.474483000 +0800`
			`+++ openexr-2.2.0-new/IlmImf/ImfHuf.cpp 2022-07-15 11:21:53.484077000 +0800`
			`@@ -1068,7 +1068,9 @@`

			`const char *ptr = compressed + 20;`

			`- if ( ptr + (nBits+7 )/8 > compressed+nCompressed)`
			`+ uint64_t nBytes = (static_cast<uint64_t>(nBits)+7) / 8 ;`
			`+`
			`+ if ( ptr + nBytes > compressed+nCompressed)`
			`{`
			`notEnoughData();`
			`return;`