monero-project/monero
monero-project/monero
1
0
Fork 0
mirror of https://github.com/monero-project/monero.git synced 2024-11-17 08:17:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

miniupnpc: quick fix for buffer overflow

Browse source 
http://talosintel.com/reports/TALOS-2015-0035/

reported by palexander on IRC
This commit is contained in:
moneromooo-monero 2015-10-09 15:17:21 +01:00
parent 5b47019cf4
commit 234f576565
No known key found for this signature in database
GPG key ID: 686F07454D6CEFC3
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
external/miniupnpc/igd_desc_parse.c vendored
View file

@ -15,6 +15,10 @@
void IGDstartelt(void * d, const char * name, int l)
{
struct IGDdatas * datas = (struct IGDdatas *)d;
if (l >= MINIUPNPC_URL_MAXSIZE) {
printf("Attempt to exploit miniupnpc buffer overflow\n");
l = MINIUPNPC_URL_MAXSIZE - 1;
}
memcpy( datas->cureltname, name, l);
datas->cureltname[l] = '\0';
datas->level++;