Commit 8bc9cefa authored by Morten Welinder's avatar Morten Welinder

xls: fix fuzzed file crash.

parent ac264f02
......@@ -14,7 +14,7 @@ Morten:
* Avoid some overflows in IMGAMMA.
* Fix tabulation truncation issue.
* Fix ABR. [#720353]
* Fix fuzzed file crash. [#720425]
* Fix fuzzed file crashes. [#720425] [#720426]
--------------------------------------------------------------------------
Gnumeric 1.12.9
......
2013-12-13 Morten Welinder <terra@gnome.org>
* ms-excel-read.c (excel_read_WINDOW2): Don't crash of truncated
record. Fixes #720426.
* xlsx-read.c (xlsx_cell_end): Make sure state->texpr ends up
NULL. Fixes #720425.
......
......@@ -5069,10 +5069,11 @@ excel_read_WINDOW2 (BiffQuery *q, ExcelReadSheet *esheet, WorkbookView *wb_view)
gboolean set_grid_color;
if (q->opcode == BIFF_WINDOW2_v2) {
guint16 const options = GSF_LE_GET_GUINT16 (q->data + 0);
guint16 options;
XL_CHECK_CONDITION (q->length >= 10);
options = GSF_LE_GET_GUINT16 (q->data + 0);
esheet->sheet->display_formulas = ((options & 0x0001) != 0);
esheet->sheet->hide_grid = ((options & 0x0002) == 0);
esheet->sheet->hide_col_header =
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment