Avoid integer overflows in pixel size calculations

commit: f81148c43a25d4c69e635b6ad13eab674b473aca [log] [tgz]
author: Pierre Ossman <ossman@cendio.se> Wed Jul 25 20:44:32 2018 +0200
committer: Pierre Ossman <ossman@cendio.se> Wed Jul 25 20:44:32 2018 +0200
tree: 608c1605e931b1fe2456ec7c236aec3c18207fbc
parent: d3a3fd692f9ee83164590338118034422308579c [diff] [blame]
diff --git a/common/rfb/RawDecoder.cxx b/common/rfb/RawDecoder.cxx
index 786f154..ec0c68e 100644
--- a/common/rfb/RawDecoder.cxx
+++ b/common/rfb/RawDecoder.cxx

@@ -36,13 +36,13 @@
 void RawDecoder::readRect(const Rect& r, rdr::InStream* is,
                           const ConnParams& cp, rdr::OutStream* os)
 {
-  os->copyBytes(is, r.area() * cp.pf().bpp/8);
+  os->copyBytes(is, r.area() * (cp.pf().bpp/8));
 }
 
 void RawDecoder::decodeRect(const Rect& r, const void* buffer,
                             size_t buflen, const ConnParams& cp,
                             ModifiablePixelBuffer* pb)
 {
-  assert(buflen >= (size_t)r.area() * cp.pf().bpp/8);
+  assert(buflen >= (size_t)r.area() * (cp.pf().bpp/8));
   pb->imageRect(cp.pf(), r, buffer);
 }
commit	f81148c43a25d4c69e635b6ad13eab674b473aca	[log] [tgz]
author	Pierre Ossman <ossman@cendio.se>	Wed Jul 25 20:44:32 2018 +0200
committer	Pierre Ossman <ossman@cendio.se>	Wed Jul 25 20:44:32 2018 +0200
tree	608c1605e931b1fe2456ec7c236aec3c18207fbc
parent	d3a3fd692f9ee83164590338118034422308579c [diff] [blame]