Fix integer overflow in PanasonicMakerNote::printAccelerometer #2007
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes: #2006
The subtraction in this code is getting flagged by OSS-Fuzz because it can overflow. It's obviously harmless because it only affects the value that gets printed, so this fix is just to make OSS-Fuzz happy.
This subtraction code is very strange though. According to the comment, it's a conversion from unsigned to signed. The comment doesn't specifically say, but it looks like the code is expecting the value to be a
uint16_t
. But it's weird because it's subtracting0xffff
, rather than0x10000
which is what I would expect for two's complement arithmetic.I have replaced the weird arithmetic with a simple
static_cast
, because that's what makes sense to me. Unfortunately, we do not have any test files that trigger this code.