Evas cserve2: Check message size

author Jean-Philippe Andre <jp.andre@samsung.com>

Mon, 27 Oct 2014 13:16:53 +0000 (22:16 +0900)

committer Jean-Philippe Andre <jp.andre@samsung.com>

Tue, 28 Oct 2014 01:54:51 +0000 (10:54 +0900)
author Jean-Philippe Andre <jp.andre@samsung.com>
Mon, 27 Oct 2014 13:16:53 +0000 (22:16 +0900)
committer Jean-Philippe Andre <jp.andre@samsung.com>
Tue, 28 Oct 2014 01:54:51 +0000 (10:54 +0900)
diff --git a/src/bin/evas/evas_cserve2_usage.c b/src/bin/evas/evas_cserve2_usage.c

index b1946ad..449c9fd 100644 (file)
--- a/src/bin/evas/evas_cserve2_usage.c
+++ b/src/bin/evas/evas_cserve2_usage.c
@@ -133,6 +133,10 @@ _server_read(int *size)
     if (n < 0)
       return NULL;
  
+   // We don't expect large messages
+   if (sr_size < 0 || sr_size > 0x10000)
+     return NULL;
+
     sr_buf = malloc(sr_size);
  
  get_data:
author	Jean-Philippe Andre <jp.andre@samsung.com>
	Mon, 27 Oct 2014 13:16:53 +0000 (22:16 +0900)
committer	Jean-Philippe Andre <jp.andre@samsung.com>
	Tue, 28 Oct 2014 01:54:51 +0000 (10:54 +0900)