diff options
author | 2016-11-10 01:34:02 +0100 | |
---|---|---|
committer | 2016-11-10 01:34:02 +0100 | |
commit | 23fe533a0f0f34e9cb1d2e328107958645d54ed1 (patch) | |
tree | 5c04c5313f57d5dddf8b5a9ca8ef0d1a29aa2ec6 /fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392 | |
parent | a4ca24c4fe316bc102b9fa52f808d206ab8cd24b (diff) | |
download | libplist-23fe533a0f0f34e9cb1d2e328107958645d54ed1.tar.gz libplist-23fe533a0f0f34e9cb1d2e328107958645d54ed1.tar.bz2 |
bplist: Make sure to error out if allocation of `used_indexes` buffer in plist_from_bin() fails
If the allocation fails, a lot of bad things can happen so we check the
result and return accordingly. We also check that the multiplication used
to calculate the buffer size doesn't overflow. Otherwise this could lead
to an allocation of a very small buffer compared to what we need, ultimately
leading to arbitrary writes later on.
Diffstat (limited to 'fuzz/bplist-crashes/crash-4c5404453bb7425aef9b953a5f6f3f0afcc48392')
0 files changed, 0 insertions, 0 deletions