[Privoxy-commits] [privoxy] 02/06: chunked_body_is_complete(): Prevent invalid read of size two
User Git
git at git.privoxy.org
Thu Feb 25 14:05:38 UTC 2021
This is an automated email from the git hooks/post-receive script.
git pushed a commit to branch master
in repository privoxy.
commit a912ba7bc9ce5855a810d09332e9d94566ce1521
Author: Fabian Keil <fk at fabiankeil.de>
AuthorDate: Fri Feb 5 05:06:56 2021 +0100
chunked_body_is_complete(): Prevent invalid read of size two
OVE-20210205-0001.
Reported by: Joshua Rogers (Opera)
---
jcc.c | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/jcc.c b/jcc.c
index bb6a8fa4..12e77364 100644
--- a/jcc.c
+++ b/jcc.c
@@ -1503,6 +1503,12 @@ static enum chunk_status chunked_body_is_complete(struct iob *iob, size_t *lengt
/* Move beyond the chunkdata. */
p += 2 + chunksize;
+ /* Make sure we're still within the buffer and have two bytes left */
+ if (p + 2 > iob->eod)
+ {
+ return CHUNK_STATUS_MISSING_DATA;
+ }
+
/* There should be another "\r\n" to skip */
if (memcmp(p, "\r\n", 2))
{
--
To stop receiving notification emails like this one, please contact
the administrator of this repository.
More information about the Privoxy-commits
mailing list