emacs-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "corrupted size vs. prev_size"

From: Lars Ingebrigtsen
Subject: Re: "corrupted size vs. prev_size"
Date: Tue, 12 Apr 2022 14:54:25 +0200
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/29.0.50 (gnu/linux) 
Found it!

It's this bit:

          for (y = 0; y < subimg_height; ++y)
            for (x = 0; x < subimg_width; ++x)
              {
                int c = raster[y * subimg_width + x];
                if (transparency_color_index != c || disposal != DISPOSE_DO_NOT)
                  {
                    *(pixmap + x + subimg_left + (y + subimg_top) * width) =
                      pixel_colors[c];
                  }
              }

On some images, this calculation writes outside the pixmap area.

-- 
(domestic pets only, the antidote for overdose, milk.)
   bloggy blog: http://lars.ingebrigtsen.no
reply via email to
[Prev in Thread] Current Thread [Next in Thread]