riscv
/
musl
mirror of https://git.musl-libc.org/git/musl
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

avoid out-of-bounds read for invalid quoted timezone 

Parsing the timezone name must stop when reaching the null terminator.
In that case, there is no '>' to skip.
master
Samuel Holland 6 years ago
committed by Rich Felker
parent
526df238d0
commit
8e452abae6
1 changed files with 2 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      src/time/__tz.c

4
src/time/__tz.c
View File

@ -86,9 +86,9 @@ static void getname(char *d, const char **p)
int i;
if (**p == '<') {
++*p;
for (i=0; (*p)[i]!='>' && i<TZNAME_MAX; i++)
for (i=0; (*p)[i] && (*p)[i]!='>' && i<TZNAME_MAX; i++)
d[i] = (*p)[i];
++*p;
if ((*p)[i]) ++*p;
} else {
for (i=0; ((*p)[i]|32)-'a'<26U && i<TZNAME_MAX; i++)
d[i] = (*p)[i];

Write Preview
Loading…
Cancel
Save