a5dc781fae
CVE-2010-1397, CVE-2010-1398, CVE-2010-1400, CVE-2010-1412,
CVE-2010-1770, CVE-2010-1773, CVE-2010-1774
17 lines
979 B
Diff
17 lines
979 B
Diff
diff -ur qt-everywhere-opensource-src-4.6.3/src/3rdparty/webkit/WebCore/rendering/RenderListMarker.cpp qt-everywhere-opensource-src-4.6.3-CVE-2010-1773/src/3rdparty/webkit/WebCore/rendering/RenderListMarker.cpp
|
|
--- qt-everywhere-opensource-src-4.6.3/src/3rdparty/webkit/WebCore/rendering/RenderListMarker.cpp 2010-06-02 04:03:11.000000000 +0200
|
|
+++ qt-everywhere-opensource-src-4.6.3-CVE-2010-1773/src/3rdparty/webkit/WebCore/rendering/RenderListMarker.cpp 2010-06-10 17:33:06.092192665 +0200
|
|
@@ -88,8 +88,10 @@
|
|
--number;
|
|
letters[lettersSize - 1] = alphabet[number % alphabetSize];
|
|
int length = 1;
|
|
- while ((number /= alphabetSize) > 0)
|
|
- letters[lettersSize - ++length] = alphabet[number % alphabetSize - 1];
|
|
+ while ((number /= alphabetSize) > 0) {
|
|
+ --number;
|
|
+ letters[lettersSize - ++length] = alphabet[number % alphabetSize];
|
|
+ }
|
|
|
|
ASSERT(length <= lettersSize);
|
|
return String(&letters[lettersSize - length], length);
|