EANX_CC/UPCA_CC: fix crash in dbar_date() on not checking length

in `cc_binary_string()`, ticket #300 (#5 & #6), props Andre Maute; add other checks for length on processing encoding mode PDF417: fix out-of-bounds crash on overrunning string and codeword buffers by tripling size (convert to `short` instead of `int` to guard against too much stack), ticket #300 (#7 & #10), props Andre Maute; (TODO: add some checks instead to bail out earlier?) CODEONE: fix looping on latch crash in `c1_encode()`, ticket #300 (#8), props Andre Maute CODABLOCKF: fix crash on negative overflow of `columns` (`option_2`), ticket #300 (#9), props Andre Maute library: add `debug_print_escape()` helper for ZINT_DEBUG_PRINT
2026-01-11 05:55:58 +00:00 · 2023-11-27 12:55:53 +00:00
parent 77c1ef1139
commit a14fe77aa0
17 changed files with 561 additions and 193 deletions
--- a/10
+++ b/10
@@ -119,8 +119,14 @@ Bugs
  byte-blocks > 11-bit limit
 - library: fix 21-bit Unicode conversion in `escape_char_process()`; fix
  restricting escaped data length by using de-escaped length to check
- CODEONE: fix out-of-bounds crash in `c1_c40text_cnt()`, ticket #300, props
-  Andre Maute
+- CODEONE: fix out-of-bounds crash in `c1_c40text_cnt()` and looping on latch
+  crash in `c1_encode()`, ticket #300, props Andre Maute
+- CODABLOCKF: fix crash due to `columns` overflow, ticket #300, props Andre
+  Maute
+- EANX_CC/UPCA_CC: fix crash in `dbar_date()` on not checking length, ticket
+  #300, props Andre Maute
+- PDF417: fix out-of-bounds crash on overrunning string and codeword buffers,
+  ticket #300, props Andre Maute


 Version 2.12.0 (2022-12-12)