[PATCH 1/5] gdiplus/metafile: Validate data size when playing back EmfPlusClear
Nikolay Sivov
nsivov at codeweavers.com
Tue Oct 17 07:49:11 CDT 2017
Signed-off-by: Nikolay Sivov <nsivov at codeweavers.com>
---
dlls/gdiplus/metafile.c | 3 +++
1 file changed, 3 insertions(+)
diff --git a/dlls/gdiplus/metafile.c b/dlls/gdiplus/metafile.c
index 1fd4db22b7..9312a04050 100644
--- a/dlls/gdiplus/metafile.c
+++ b/dlls/gdiplus/metafile.c
@@ -1823,6 +1823,9 @@ GpStatus WINGDIPAPI GdipPlayMetafileRecord(GDIPCONST GpMetafile *metafile,
{
EmfPlusClear *record = (EmfPlusClear*)header;
+ if (dataSize != sizeof(record->Color))
+ return InvalidParameter;
+
return GdipGraphicsClear(metafile->playback_graphics, record->Color);
}
case EmfPlusRecordTypeFillRects:
--
2.14.2
More information about the wine-patches
mailing list