<br/>
<h1>Changelog from Git</h1><br/><br/>
<div class='changelog'>
-<pre class='wrap'>commit 4b16e8d27ae524c5bf5f8af299703f7334752465
+<pre class='wrap'>commit fd8448ed446a935da3210821a783e794ede3c599
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-17 17:04:48 +0200
+
+ bench_dwt.c: fix signedness related warnings
+
+commit da046b73a89806eae2f7f461c2a46bda7e07aaa8
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-17 17:02:40 +0200
+
+ convert.c: fix recently introduced -Wsign-conversion warnings
+
+commit 9f7d79fd30df3712e6bfc6d475bfa143c069c4df
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-17 14:52:10 +0200
+
+ opj_getopt_long(): avoid infinite loop on invalid or missing value for an option (#736)
+
+commit 1ab6e0e07a67193564811c5720a69cb28f09a809
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-17 12:01:16 +0200
+
+ opj_decompress_fuzzer.cpp: reject images with too big tiles. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2918. Credit to OSS Fuzz
+
+commit 2cd30c2b06ce332dede81cccad8b334cde997281
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-17 11:47:40 +0200
+
+ tgatoimage(): avoid excessive memory allocation attempt, and fixes unaligned load (#995)
+
+commit 09e83407fa2b53c606d3179031b8d8b31272e20c
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-17 11:05:53 +0200
+
+ Avoid asserting on assert(i == pcol) in opj_jp2_apply_pclr() by adding new check in opj_jp2_check_color(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3068. Credit to OSS Fuzz
+
+commit 8e6c371e66d9c579048fd336cc3365869486080a
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 18:29:59 +0200
+
+ opj_t1_encode_cblk(): avoid uint32 overflow when numbps = 0 (which is well defined behaviour, and is properly handled here, but better avoid it to detect real issues)
+
+commit 1e387de74273c4dac618df94475556541c1caf3e
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 17:38:47 +0200
+
+ Fix build issue of JPWL by adding opj_image_data_alloc() and opj_image_data_free() to src/lib/openmj2 (#994)
+
+commit c535531f03369623b9b833ef41952c62257b507e
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 17:20:29 +0200
+
+ opj_t2_encode_packet(): fix potential write heap buffer overflow (#992)
+
+commit dcac91b8c72f743bda7dbfa9032356bc8110098a
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 17:09:10 +0200
+
+ opj_j2k_write_sot(): fix potential write heap buffer overflow (#991)
+
+commit af760007711bf93041d3eba3a41b9a48d365f303
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 13:36:52 +0200
+
+ tiftoimage(): fix read heap buffer overflow (#988)
+
+ The number of components is given only by TIFFTAG_SAMPLESPERPIXEL / tiSpp.
+ Querying TIFFTAG_EXTRASAMPLES only give information about which channel is
+ the alpha channel, but we mostly ignore it for now, so remove that part of the
+ code.
+
+commit ab4de904e7dc1deee83122cd2bf6e0e7f4eb2eb0
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 13:11:36 +0200
+
+ imagetotga(): fix read heap buffer overflow if numcomps < 3 (#987)
+
+commit 9624b2fa4722edf77fbac631e7dacaae12c91672
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-16 12:52:33 +0200
+
+ opj_t2_encode_packet(): only emit an error about insufficiently large output buffer in FINAL_PASS mode. Fixes (master-only) regression added in 0b4fef6d1901254e41ab74ed681daba477d724c3
+
+commit 4241ae6fbbf1de9658764a80944dc8108f2b4154
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-15 11:55:58 +0200
+
+ Fix assertion in debug mode / heap-based buffer overflow in opj_write_bytes_LE for Cinema profiles with numresolutions = 1 (#985)
+
+commit 52d5690a6fcba86b5f117eeac8aca1971cac3688
+Merge: baf0c1a bc59410
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2017-08-14 17:28:26 +0200
+
+ Merge pull request #984 from stweil/const
+
+ Use more const qualifiers
+
+commit baf0c1ad4572daa89caa3b12985bdd93530f0dd7
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-14 17:26:58 +0200
+
+ bmp_read_info_header(): reject bmp files with biBitCount == 0 (#983)
+
+commit afb308b9ccbe129608c9205cf3bb39bbefad90b9
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-14 17:20:37 +0200
+
+ Encoder: grow buffer size in opj_tcd_code_block_enc_allocate_data() to avoid write heap buffer overflow in opj_mqc_flush (#982)
+
+commit bc59410f253b0cd3d4818ec06ce957cbdbfe4341
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2017-08-14 14:36:06 +0200
+
+ Use const qualifier for mqc_states
+
+ This allows more compiler optimizations.
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
+
+commit 10e6ce2c2cfacf51fdde7e9c69bf2365840f4bb0
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2017-08-13 22:57:31 +0200
+
+ Use const qualifier for j2k_prog_order_list
+
+ This allows more compiler optimizations.
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
+
+commit 0b4c3ce75d11600ebc6675bd871f78ca3c95bc60
+Merge: a35b489 9f75088
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2017-08-11 15:13:35 +0200
+
+ Merge pull request #980 from szukw000/changes-for-ppc64-converttif
+
+ Changes in converttif.c for PPC64
+
+commit 9f750884f91a4f1b9ca3e6a401057c21a7e2bd99
+Author: szukw000 <szukw000@arcor.de>
+Date: 2017-08-11 00:06:23 +0200
+
+ Changes in converttif.c for PPC64
+
+commit a35b4891340dcecf2b248c7e57a90bf7d7aa9b2f
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-10 16:58:36 +0200
+
+ Fix argument order in error message of previous commit
+
+commit 0b4fef6d1901254e41ab74ed681daba477d724c3
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-10 16:49:47 +0200
+
+ Propagate event manager down to opj_t2_encode_packet() and use it to emit an error message when the output buffer is too small
+
+commit a316f36dfc7cc4217bfce0ac6d23b47f90cf8fd9
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-10 14:43:16 +0200
+
+ Fix crash on encoding if using opj_set_default_encoder_parameters() without defining tcp_numlayers
+
+commit a4c938181deb2cb48e408ac6e358062927060125
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-10 12:30:31 +0200
+
+ Reformat tests/test_tile_encoder.c
+
+commit 26fe8f60433aa677fd29590e7da23437c41e99c8
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-10 11:45:49 +0200
+
+ Improve doc of opj_tccp_info_t::cblkw and cblkh
+
+commit 07c2fe28b0ef3dc9f168f2b2c449275ac1dde981
+Author: Antonin Descampe <antonin@gmail.com>
+Date: 2017-08-09 21:51:16 -0700
+
+ Comment back previous version in abi-check.sh
+
+commit c5987173c5ca2d6fb140dd84d7ae7736824e6d66
+Author: Antonin Descampe <antonin@gmail.com>
+Date: 2017-08-09 21:35:30 -0700
+
+ update abi-check for latest release
+
+commit 3d7cde5fc9fbc5618d02160900d32e02ed12a00e
+Author: Antonin Descampe <antonin@descampe.net>
+Date: 2017-08-09 17:31:50 -0700
+
+ Preparing Release v2.2.0
+
+commit bc21818c635f1f84aa72bb327a20ca42c3b6dcbe
+Author: Antonin Descampe <antonin@gmail.com>
+Date: 2017-08-09 17:28:17 -0700
+
+ Preparing Release v2.2.0
+
+commit c03fbbee6399d6a996f484015035d5996ce80f9a
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-08-10 01:14:35 +0200
+
+ .travis.yml: add 'dist: precise' for config that requires it
+
+commit 4b16e8d27ae524c5bf5f8af299703f7334752465
Author: Even Rouault <even.rouault@spatialys.com>
Date: 2017-08-09 17:37:05 +0200
Avoid p_stream->m_user_data_length >= (OPJ_UINT64)p_stream->m_byte_offset assertion in opj_stream_get_number_byte_left(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2786. Credit to OSS Fuzz
-commit 1ed8d67797ef57143e2c855b602016bf9d89337d
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-30 15:35:47 +0200
-
- opj_j2k_set_decode_area: replace assertions by runtime checks. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2795. Credit to OSS Fuzz
-
-commit 68832af20e3b3710424947e12762b6b52d3b6ac0
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-30 15:22:24 +0200
-
- opj_tcd_dc_level_shift_decode: avoid int32 overflow when prec == 31. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2799. Credit to OSS Fuzz
-
-commit 517bf6fd86dae18b62390a03533d30da0e5bb701
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 21:11:23 +0200
-
- src/bin/jpwl/convert.c: fix memleak (fix suggested by maddin200, #631)
-
-commit 51eb86d8f7a6297a4f0e8ca44977b72532de0353
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 19:43:23 +0200
-
- Fix warnings in pi.c raised by VS11 analyze (#190)
-
-commit 397f62c0a838e15d667ef50e27d5d011d2c79c04
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 19:13:49 +0200
-
- Fix write heap buffer overflow in opj_mqc_byteout(). Discovered by Ke Liu of Tencent's Xuanwu LAB (#835)
-
-commit 11445eddad7e7fa5b273d1c83c91011c44e5d586
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 19:03:13 +0200
-
- opj_pi_update_decode_poc(): limit layno1 to the number of layers (CVE-2016-1626 and CVE-2016-1628, #850)
-
- This has been recently fixed in a less elegant way per
- 80818c39f5bfbac37768fcee95b0ffeceaa77264
-
-commit 3fbe71369019df0b47c7a2be4fab8c05768f2f32
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 18:38:16 +0200
-
- opj_tcd_get_decoded_tile_size(): fix potential UINT32 overflow (#854, CVE-2016-5152)
-
- Fix derived from https://pdfium.googlesource.com/pdfium.git/+/d8cc503575463ff3d81b22dad292665f2c88911e/third_party/libopenjpeg20/0018-tcd_get_decoded_tile_size.patch
-
-commit 5a3e7aaf339943bc988adbada39a1fc8f5046899
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 17:56:12 +0200
-
- color_cielab_to_rgb(): reject images with components of different dimensions to void read heap buffer overflow (#909)
-
-commit 784d4d47e97b5d0fccccbd931349997a0e2074cc
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 17:51:10 +0200
-
- Fix breakage of 2fa0fc61f2d546c8b67e7c5a9cbc61d98e1f7af0 (#970)
-
-commit 2fa0fc61f2d546c8b67e7c5a9cbc61d98e1f7af0
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 17:28:55 +0200
-
- imagetopnm(): make sure the alpha component has same dimension as other components to avoid read heap buffer overflow (#970)
-
-commit db9ef99f6dd054a84fa8382c02869fb0656abfc8
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 16:34:35 +0200
-
- opj_t1_decode_cblk(): avoid undefined shift behaviour. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2487. Credit to OSS Fuzz
-
-commit f6551f822fe020843299bd807ec6989abd070b2c
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 16:29:11 +0200
-
- opj_t1_clbl_decode_processor(): avoid undefined behaviour if roishift >= 31. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2506. Credit to OSS Fuzz
-
-commit 9906fbf737692486cebabe98169988d818e2e66a
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 16:22:36 +0200
-
- Avoid assertion in opj_j2k_merge_ppt() in case premature EOC is encountered in opj_j2k_read_tile_header(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2785. Credit to OSS Fuzz
-
-commit 71b4f5b124d14ed609763b11e19d2d480bc32f58
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-29 15:52:11 +0200
-
- opj_pi_next_pcrl(): avoid undefined shift behaviour. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2787. Credit to OSS Fuzz
-
-commit d6654d906c1ae66590b6d600458a91f1ee923de5
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-28 22:15:47 +0200
-
- opj_int_ceildiv(): fix int32 overflow. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2494. Credit to OSS Fuzz
-
-commit 361c4506fdfb9b6f0e41d86d5d0ea1efb5704ecf
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-28 22:06:26 +0200
-
- opj_tcd_dc_level_shift_decode(): avoid int overflow. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2516. Credit to OSS Fuzz
-
-commit 7bdbe490cba9990916f94a40379cc787434340ff
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-28 21:55:22 +0200
-
- Fix null pointer dereference in opj_jp2_apply_pclr(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2558. Credit to OSS Fuzz
-
-commit 16aeb9282f6b3877aa8365c461ba8d3d1338adae
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-28 21:39:30 +0200
-
- Fix null pointer dereference in opj_j2k_add_mct() (#895)
-
- Fixes openjeg-crashes-2017-07-27/issue879-poc1.j2k of #895
-
-commit c5bf5ef4d6552e9159aaad29cb27826acd1a3389
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-28 21:29:55 +0200
-
- Avoid use-after-free when a MCT marker is found after a MCC one (#895)
-
- Fixes openjeg-crashes-2017-07-27/issue880-poc2.j2k of #895
-
-commit e03e9474667e5117341351699f0b1dbb06f93346
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-27 22:29:17 +0200
-
- Avoid undefined shift behaviour if bit depth == 32 (#895)
-
- Fixes openjeg-crashes-2017-07-27/id:000000,sig:11,src:003798,op:ext_AO,pos:128.jp2
-
-commit 820fcfe8bb101a2862c076b02c9b6b636ce39d2f
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-27 19:34:54 +0200
-
- opj_j2k_update_image_data / opj_tcd_update_tile_data: fix unaligned load/store (#895)
-
- When components don't have the same width, unaligned load/store are possible.
-
- Fixes openjeg-crashes-2017-07-27/id:000000,sig:11,src:001342,op:flip4,pos:162.jp2 of #895
-
-commit 6c4e5bacb9d9791fc6ff074bd7958b3820d70514
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-27 19:22:14 +0200
-
- opj_pi_next_rpcl / opj_pi_next_pcrl / opj_pi_next_cprl: avoid int overflow (#895)
-
- Fixes int overflow on openjeg-crashes-2017-07-27/id:000000,sig:08,src:000879,op:flip2,pos:128.jp2
-
-commit 178194c093422c9564efc41f9ecb5c630b43f723
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-27 18:51:51 +0200
-
- opj_jp2_check_color(): replace assertion regarding mtyp by runtime check (#672, #895)
-
- Fixes test case openjeg-crashes-2017-07-27/id:000000,sig:06,src:000001,op:flip1,pos:808.jp2
- of #895
-
-commit d6fa30099797c68c6a67decf58571dd59dbf734b
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-26 23:25:38 +0200
-
- Avoids undefined shift behaviour in m_dc_level_shift computation
-
- Fixes warning found on clusterfuzz-testcase-minimized-5146316340461568
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2495
-
- Credit to OSS Fuzz
-
-commit a88cbb6a0b3539461dfb29922102953b7a7fc3a7
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-26 22:53:59 +0200
-
- Fix various undefined shift behaviour in pi.c
-
- Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2496
- Credit to OSS Fuzz
-
-commit 6c5fe9407b7768eb2ac55b83511bc103551d207a
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-26 22:22:44 +0200
-
- Avoid potential undefined shift behaviour in opj_bio_read() from opj_t2_read_packet_header()
-
- Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2485
- Credit to OSS Fuzz
-
-commit dbf527bf2a53bc88e6cf1373991002ec0e8e22a1
-Merge: 5e795d9 94c4b73
-Author: Even Rouault <even.rouault@mines-paris.org>
-Date: 2017-07-26 22:05:32 +0200
-
- Merge pull request #800 from rouault/tier1_optimizations_multithreading_pterm_check
-
- Implement predictive termination check
-
-commit 94c4b7300cc515330bf798bb45eb0d68e2c84aa0
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-26 21:39:50 +0200
-
- T1 decoder: check code stream errors when predictable termination is enabled and emit a warning when errors are found
-
-commit 5e795d90a1e47616e0c7a2e39381c13ccf7fd6dd
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-07-26 21:06:38 +0200
-
- Spelling fixes (patch by ka7, #890, rebased on top of master)
-
...</pre></div>
</body>