JUCE Fix potential vulnerable cloned functions\nDecomp: Don't enable 2-pass color quant w/ RGB565

Fix potential vulnerable cloned functions\nDecomp: Don't enable 2-pass color quant w/ RGB565

Open npt-1707 opened this issue 7 months ago • 0 comments

Description This PR fixes a potential vulnerability that was cloned from libjpeg-turbo but did not receive the security patch. The original issue was reported and fixed under https://github.com/libjpeg-turbo/libjpeg-turbo/commit/42ce199c9cfe129e5e21afd48dfe757a6acf87c4. This PR applies the same patch to eliminate the vulnerability.

References https://nvd.nist.gov/vuln/detail/CVE-2023-2804 https://github.com/libjpeg-turbo/libjpeg-turbo/commit/42ce199c9cfe129e5e21afd48dfe757a6acf87c4

Apr 24 '25 08:04 npt-1707

JUCE JUCE copied to clipboard

Fix potential vulnerable cloned functions\nDecomp: Don't enable 2-pass color quant w/ RGB565

JUCE
JUCE copied to clipboard