Google Git
Sign in
flutter/third_party/libjpeg-turbo/cf6dd8b0b92fbe1bc51ef16e36aa4e295126a601^!/.
commit
cf6dd8b0b92fbe1bc51ef16e36aa4e295126a601
[log]
author
DRC <information@libjpeg-turbo.org>
Tue Nov 23 09:54:23 2021 -0600
committer
DRC <information@libjpeg-turbo.org>
Tue Nov 23 10:59:47 2021 -0600
tree
1873832ef0c0fec78e56e74b09550ae08268a89d
parent
6140170eb1ae1c9489d6f5ff8330301456b413a3 [diff]
jdarith.c: Require cinfo->Se == DCTSIZE2 - 1

This fixes an oversight from the integration of the arithmetic entropy
codec from libjpeg (66f97e6820e2cc9ef7429ea36285c80ffda87c8f).  I chose
to integrate the latest implementation available at the time, which was
from jpeg-8b.  However, I naively replaced cinfo->lim_Se with
DCTSIZE2 - 1, not realizing that-- because of SmartScale-- jpeg-8b
contains additional code
(https://github.com/libjpeg-turbo/libjpeg-turbo/blob/jpeg-8b/jdinput.c#L249-L334)
that guards against illegal values of cinfo->Se >= DCTSIZE2.  Thus,
libjpeg-turbo's implementation of arithmetic decoding has never guarded
against such illegal values.  This commit restores the relevant check
from the original jpeg-6b arithmetic entropy codec patch ("jpeg-ari",
1e247ac854f8e33682bcfea475f6bccc42377208).

Fixes #564

diff --git a/jdarith.c b/jdarith.c
index 44b6a84..7f31edd 100644
--- a/jdarith.c
+++ b/jdarith.c

@@ -690,8 +690,8 @@
     /* Check that the scan parameters Ss, Se, Ah/Al are OK for sequential JPEG.
      * This ought to be an error condition, but we make it a warning.
      */
-    if (cinfo->Ss != 0 || cinfo->Ah != 0 || cinfo->Al != 0 ||
-        (cinfo->Se < DCTSIZE2 && cinfo->Se != DCTSIZE2 - 1))
+    if (cinfo->Ss != 0 || cinfo->Se != DCTSIZE2-1 ||
+        cinfo->Ah != 0 || cinfo->Al != 0)
       WARNMS(cinfo, JWRN_NOT_SEQUENTIAL);
     /* Select MCU decoding routine */
     entropy->pub.decode_mcu = decode_mcu;