[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[taler-exchange] branch master updated: more stringent overflow checks
From: |
gnunet |
Subject: |
[taler-exchange] branch master updated: more stringent overflow checks |
Date: |
Fri, 27 Mar 2020 13:32:19 +0100 |
This is an automated email from the git hooks/post-receive script.
grothoff pushed a commit to branch master
in repository exchange.
The following commit(s) were added to refs/heads/master by this push:
new e8c8efe5 more stringent overflow checks
e8c8efe5 is described below
commit e8c8efe5ec093428a0af300931f9147732c91fa9
Author: Christian Grothoff <address@hidden>
AuthorDate: Fri Mar 27 13:32:16 2020 +0100
more stringent overflow checks
---
src/bank-lib/bank_api_transfer.c | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/src/bank-lib/bank_api_transfer.c b/src/bank-lib/bank_api_transfer.c
index 45bbb46e..c8fbe690 100644
--- a/src/bank-lib/bank_api_transfer.c
+++ b/src/bank-lib/bank_api_transfer.c
@@ -284,7 +284,10 @@ TALER_BANK_transfer (
}
d_len = ntohl (wp->account_len);
u_len = ntohl (wp->exchange_url_len);
- if (sizeof (*wp) + d_len + u_len != buf_size)
+ if ( (sizeof (*wp) + d_len + u_len != buf_size) ||
+ (d_len > buf_size) ||
+ (u_len > buf_size) ||
+ (d_len + u_len > buf_size) )
{
GNUNET_break (0);
return NULL;
--
To stop receiving notification emails like this one, please contact
address@hidden.
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [taler-exchange] branch master updated: more stringent overflow checks,
gnunet <=