forked from Lainports/freebsd-ports
6966f2b88e
PR: ports/164270 Submitted by: kj <b4039413@nwldx.com> Security: 57f1a624-6197-11e1-b98c-bcaec565249c
25 lines
758 B
C
25 lines
758 B
C
Commit doesn't mention it but this fixes CVE-2011-3919
|
|
|
|
From 5bd3c061823a8499b27422aee04ea20aae24f03e Mon Sep 17 00:00:00 2001
|
|
From: Daniel Veillard <veillard@redhat.com>
|
|
Date: Fri, 16 Dec 2011 10:53:35 +0000
|
|
Subject: Fix an allocation error when copying entities
|
|
|
|
---
|
|
(limited to 'parser.c')
|
|
|
|
diff --git a/parser.c b/parser.c
|
|
index 4e5dcb9..c55e41d 100644
|
|
--- parser.c
|
|
+++ parser.c
|
|
@@ -2709,7 +2709,7 @@ xmlStringLenDecodeEntities(xmlParserCtxtPtr ctxt, const xmlChar *str, int len,
|
|
|
|
buffer[nbchars++] = '&';
|
|
if (nbchars > buffer_size - i - XML_PARSER_BUFFER_SIZE) {
|
|
- growBuffer(buffer, XML_PARSER_BUFFER_SIZE);
|
|
+ growBuffer(buffer, i + XML_PARSER_BUFFER_SIZE);
|
|
}
|
|
for (;i > 0;i--)
|
|
buffer[nbchars++] = *cur++;
|
|
--
|
|
cgit v0.9.0.2
|