projects
/
privoxy.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
ebf8e99
)
decompress_iob(): Prevent reading of uninitialized data
author
Fabian Keil
<fk@fabiankeil.de>
Sun, 7 Feb 2021 16:52:58 +0000
(17:52 +0100)
committer
Fabian Keil
<fk@fabiankeil.de>
Sun, 21 Feb 2021 16:32:40 +0000
(17:32 +0100)
Reported by: Joshua Rogers (Opera).
parsers.c
patch
|
blob
|
history
diff --git
a/parsers.c
b/parsers.c
index
999c715
..
3197c4f
100644
(file)
--- a/
parsers.c
+++ b/
parsers.c
@@
-608,6
+608,14
@@
jb_err decompress_iob(struct client_state *csp)
* XXX: this code is untested and should probably be removed.
*/
int skip_bytes;
+
+ if (cur + 2 >= csp->iob->eod)
+ {
+ log_error(LOG_LEVEL_ERROR,
+ "gzip extra field flag set but insufficient data available.");
+ return JB_ERR_COMPRESS;
+ }
+
skip_bytes = *cur++;
skip_bytes += (unsigned char)*cur++ << 8;