[WIN32K:NTUSER]
authorThomas Faber <thomas.faber@reactos.org>
Sun, 11 Jun 2017 06:53:28 +0000 (06:53 +0000)
committerThomas Faber <thomas.faber@reactos.org>
Sun, 11 Jun 2017 06:53:28 +0000 (06:53 +0000)
- Initialize BITMAPINFOHEADER::biSize before calling GreGetDIBitsInternal in IntSynthesizeDib. Fixes use of uninitialized memory and subsequent stack buffer overflow.
CORE-13408

svn path=/trunk/; revision=74991

reactos/win32ss/user/ntuser/clipboard.c

index e6809f4..4de6766 100644 (file)
@@ -154,6 +154,7 @@ IntSynthesizeDib(
     }
 
     /* Get information about the bitmap format */
+    pbmi->bmiHeader.biSize = sizeof(bmiBuffer.bmih);
     iResult = GreGetDIBitsInternal(hdc,
                                    hbm,
                                    0,