Chris Down 2649e8d533 Avoid out-of-bounds access when a slide input line begins with \0 ...

If we read in a line with \0 at the beginning, blen will be 0. However,
we then try to index our copy of the buffer with
s->lines[s->linecount][blen-1], we'll read (and potentially write if the
data happens to be 0x0A) outside of strdup's allocated memory, and may
crash.

Fix this by just rejecting lines with a leading \0. Lines with nulls
embedded in other places don't invoke similar behaviour, since the
length is still >0.

2020-05-14 11:43:34 +02:00

15 KiB

Raw Blame History

View Raw