33 lines
1.1 KiB
Diff
33 lines
1.1 KiB
Diff
From ad5165ff126fc43c60e4d2473c4d8901dc896fec Mon Sep 17 00:00:00 2001
|
|
From: erouault <erouault>
|
|
Date: Wed, 11 Jan 2017 12:15:01 +0000
|
|
Subject: [PATCH 4/8] * libtiff/tif_jpeg.c: avoid integer division by zero in
|
|
JPEGSetupEncode() when horizontal or vertical sampling is set to 0. Fixes
|
|
http://bugzilla.maptools.org/show_bug.cgi?id=2653
|
|
|
|
---
|
|
libtiff/tif_jpeg.c | 7 +++++++
|
|
1 file changed, 7 insertions(+)
|
|
|
|
diff --git a/libtiff/tif_jpeg.c b/libtiff/tif_jpeg.c
|
|
index 70b72d8..1508ce6 100644
|
|
--- a/libtiff/tif_jpeg.c
|
|
+++ b/libtiff/tif_jpeg.c
|
|
@@ -1626,6 +1626,13 @@ JPEGSetupEncode(TIFF* tif)
|
|
case PHOTOMETRIC_YCBCR:
|
|
sp->h_sampling = td->td_ycbcrsubsampling[0];
|
|
sp->v_sampling = td->td_ycbcrsubsampling[1];
|
|
+ if( sp->h_sampling == 0 || sp->v_sampling == 0 )
|
|
+ {
|
|
+ TIFFErrorExt(tif->tif_clientdata, module,
|
|
+ "Invalig horizontal/vertical sampling value");
|
|
+ return (0);
|
|
+ }
|
|
+
|
|
/*
|
|
* A ReferenceBlackWhite field *must* be present since the
|
|
* default value is inappropriate for YCbCr. Fill in the
|
|
--
|
|
2.7.4
|
|
|