| Brad Bishop | 1932369 | 2019-04-05 15:28:33 -0400 | [diff] [blame] | 1 | There is a potential infinite-loop in function _arc_error_normalized(). |
| 2 | |
| 3 | CVE: CVE-2019-6461 |
| 4 | Upstream-Status: Pending |
| 5 | Signed-off-by: Ross Burton <ross.burton@intel.com> |
| 6 | |
| 7 | diff --git a/src/cairo-arc.c b/src/cairo-arc.c |
| 8 | index 390397bae..f9249dbeb 100644 |
| 9 | --- a/src/cairo-arc.c |
| 10 | +++ b/src/cairo-arc.c |
| 11 | @@ -99,7 +99,7 @@ _arc_max_angle_for_tolerance_normalized (double tolerance) |
| 12 | do { |
| 13 | angle = M_PI / i++; |
| 14 | error = _arc_error_normalized (angle); |
| 15 | - } while (error > tolerance); |
| 16 | + } while (error > tolerance && error > __DBL_EPSILON__); |
| 17 | |
| 18 | return angle; |
| 19 | } |