projects
/
platform
/
upstream
/
expat.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
fb871ee
)
[CVE-2022-25314] Prevent integer overflow in copyString
81/275181/1
accepted/tizen_7.0_base_hotfix
accepted/tizen_7.0_base_tool
accepted/tizen_7.0_base_tool_hotfix
accepted/tizen_base_tool
backup/expat-2.4.1-20240517
sandbox/backup/expat_2.4.1_20231228
tizen_7.0_base_hotfix
accepted/tizen/7.0/base/20230714.002902
accepted/tizen/7.0/base/hotfix/20230714.003717
accepted/tizen/7.0/base/tool/20221028.113146
accepted/tizen/7.0/base/tool/hotfix/20221115.084933
accepted/tizen/8.0/base/20231005.044657
accepted/tizen/base/20230714.003309
accepted/tizen/base/tool/20220531.054653
submit/tizen_7.0_base/20221028.200901
submit/tizen_7.0_base_hotfix/20221115.161501
submit/tizen_base/20220518.020131
submit/tizen_base/20220518.222011
submit/tizen_base/20220524.054837
tizen_7.0_m2_release
tizen_8.0_m2_release
author
Samanta Navarro
<ferivoz@riseup.net>
Tue, 15 Feb 2022 11:56:57 +0000
(11:56 +0000)
committer
DongHun Kwak
<dh0128.kwak@samsung.com>
Wed, 18 May 2022 01:41:20 +0000
(10:41 +0900)
The copyString function is only used for encoding string supplied by
the library user.
Change-Id: I66e46c4199873ec11df97f30bc0da130059a5ef2
lib/xmlparse.c
patch
|
blob
|
history
diff --git
a/lib/xmlparse.c
b/lib/xmlparse.c
index
dabd40d
..
e46a458
100644
(file)
--- a/
lib/xmlparse.c
+++ b/
lib/xmlparse.c
@@
-7249,7
+7249,7
@@
getElementType(XML_Parser parser, const ENCODING *enc, const char *ptr,
static XML_Char *
copyString(const XML_Char *s, const XML_Memory_Handling_Suite *memsuite) {
-
in
t charsRequired = 0;
+
size_
t charsRequired = 0;
XML_Char *result;
/* First determine how long the string is */