nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-09 17:38:00 +00:00
Code Issues Projects Releases Wiki Activity

Check the x argument to check_boundary() more carefully.

Browse Source 
This is a minimal fix for CVE-2015-5309, and while it's probably
unnecessary now, it seems worth committing for defence in depth and to
give downstreams something reasonably non-intrusive to cherry-pick.
This commit is contained in:
Ben Harris 2015-10-13 20:33:12 +01:00
parent 0629f1dfa5
commit 5171dcb982
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
terminal.c
View File

@ -2344,7 +2344,7 @@ static void check_boundary(Terminal *term, int x, int y)
termline *ldata;
/* Validate input coordinates, just in case. */
if (x == 0 || x > term->cols)
if (x <= 0 || x > term->cols)
return;
ldata = scrlineptr(y);