From: Nicholas Guriev <nicholas@guriev.su>
Date: Tue, 25 May 2021 11:12:31 +0000 (+0300)
Subject: Skip dash array of size one or zero
X-Git-Tag: submit/tizen/20210531.030446^0
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=136ee686be199d0971e90eb67bbf08ac0a2a9824;p=platform%2Fcore%2Fuifw%2Flottie-player.git

Skip dash array of size one or zero

An attempt to fix CVE-2021-31317, not tested yet.

Change-Id: Ib9a061ddc6c2136082f9f79ff35101fb6d5cf0b5
---

diff --git a/src/lottie/lottiemodel.cpp b/src/lottie/lottiemodel.cpp
index e2b48e6..9da82f7 100644
--- a/src/lottie/lottiemodel.cpp
+++ b/src/lottie/lottiemodel.cpp
@@ -205,7 +205,7 @@ void model::Dash::getDashInfo(int frameNo, std::vector<float> &result) const
 {
     result.clear();
 
-    if (mData.empty()) return;
+    if (mData.size() <= 1) return;
 
     if (result.capacity() < mData.size()) result.reserve(mData.size() + 1);