You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
22 lines
560 B
22 lines
560 B
6 years ago
|
@@ -, +, @@
|
||
|
|
(CVE-2017-13090)
|
||
|
|
---
|
||
|
|
src/retr.c | 6 ++++++
|
||
|
|
1 file changed, 6 insertions(+)
|
||
|
|
--- a/src/retr.c
|
||
|
|
+++ a/src/retr.c
|
||
|
|
@@ -378,6 +378,12 @@ fd_read_body (const char *downloaded_filename, int fd, FILE *out, wgint toread,
|
||
|
|
remaining_chunk_size = strtol (line, &endl, 16);
|
||
|
|
xfree (line);
|
||
|
|
|
||
|
|
+ if (remaining_chunk_size < 0)
|
||
|
|
+ {
|
||
|
|
+ ret = -1;
|
||
|
|
+ break;
|
||
|
|
+ }
|
||
|
|
+
|
||
|
|
if (remaining_chunk_size == 0)
|
||
|
|
{
|
||
|
|
ret = 0;
|
||
|
|
--
|