evas cserve - fix validation of cserve mesg size field

author Carsten Haitzler (Rasterman) <raster@rasterman.com>

Fri, 29 Sep 2017 03:07:48 +0000 (12:07 +0900)

committer Carsten Haitzler (Rasterman) <raster@rasterman.com>

Fri, 29 Sep 2017 03:26:57 +0000 (12:26 +0900)
author Carsten Haitzler (Rasterman) <raster@rasterman.com>
Fri, 29 Sep 2017 03:07:48 +0000 (12:07 +0900)
committer Carsten Haitzler (Rasterman) <raster@rasterman.com>
Fri, 29 Sep 2017 03:26:57 +0000 (12:26 +0900)
diff --git a/src/bin/evas/evas_cserve2_slaves.c b/src/bin/evas/evas_cserve2_slaves.c

index f790357..72fc143 100644 (file)
--- a/src/bin/evas/evas_cserve2_slaves.c
+++ b/src/bin/evas/evas_cserve2_slaves.c
@@ -222,6 +222,11 @@ _slave_proc_read_cb(int fd, Fd_Flags flags, void *data)
            {
               return;
            }
+        if ((ints[0] < 0) || (ints[0] > (128 * 1024)))
+          {
+             ERR("Invalid size to read: %i", ints[0]);
+             return;
+          }
          s->read.size = ints[0];
          s->read.cmd = ints[1];
          if (s->read.size)
author	Carsten Haitzler (Rasterman) <raster@rasterman.com>
	Fri, 29 Sep 2017 03:07:48 +0000 (12:07 +0900)
committer	Carsten Haitzler (Rasterman) <raster@rasterman.com>
	Fri, 29 Sep 2017 03:26:57 +0000 (12:26 +0900)