summaryrefslogtreecommitdiffstats
path: root/src/lib
diff options
context:
space:
mode:
Diffstat (limited to 'src/lib')
-rw-r--r--src/lib/gssapi/generic/ChangeLog5
-rw-r--r--src/lib/gssapi/generic/util_ordering.c4
2 files changed, 9 insertions, 0 deletions
diff --git a/src/lib/gssapi/generic/ChangeLog b/src/lib/gssapi/generic/ChangeLog
index 50f08cac8..fd5eb9732 100644
--- a/src/lib/gssapi/generic/ChangeLog
+++ b/src/lib/gssapi/generic/ChangeLog
@@ -1,3 +1,8 @@
+2004-02-08 Ken Raeburn <raeburn@mit.edu>
+
+ * util_ordering.c (g_queue_externalize, g_queue_internalize):
+ Check for sufficient buffer space.
+
2003-12-19 Ken Raeburn <raeburn@mit.edu>
* gssapi_generic.c (const_oids): Renamed from oids, and now const.
diff --git a/src/lib/gssapi/generic/util_ordering.c b/src/lib/gssapi/generic/util_ordering.c
index fe2eaafc2..f7cf66678 100644
--- a/src/lib/gssapi/generic/util_ordering.c
+++ b/src/lib/gssapi/generic/util_ordering.c
@@ -219,6 +219,8 @@ g_queue_size(void *vqueue, size_t *sizep)
gss_uint32
g_queue_externalize(void *vqueue, unsigned char **buf, size_t *lenremain)
{
+ if (*lenremain < sizeof(queue))
+ return ENOMEM;
memcpy(*buf, vqueue, sizeof(queue));
*buf += sizeof(queue);
*lenremain -= sizeof(queue);
@@ -231,6 +233,8 @@ g_queue_internalize(void **vqueue, unsigned char **buf, size_t *lenremain)
{
void *q;
+ if (*lenremain < sizeof(queue))
+ return EINVAL;
if ((q = malloc(sizeof(queue))) == 0)
return ENOMEM;
memcpy(q, *buf, sizeof(queue));
generated by cgit (git 2.34.1) at 2026-04-14 03:05:11 +0000