nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-03-16 12:03:03 -05:00
Code Issues Projects Releases Wiki Activity

Check the x argument to check_boundary() more carefully.

Browse Source 
This is a minimal fix for CVE-2015-5309, and while it's probably
unnecessary now, it seems worth committing for defence in depth and to
give downstreams something reasonably non-intrusive to cherry-pick.
This commit is contained in:
Ben Harris 2015-10-13 20:33:12 +01:00
parent 6056396f77
commit 5936c55c7f
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
terminal.c
View File

@ -2344,7 +2344,7 @@ static void check_boundary(Terminal *term, int x, int y)
termline *ldata; termline *ldata;
/* Validate input coordinates, just in case. */ /* Validate input coordinates, just in case. */
if (x == 0 || x > term->cols) if (x <= 0 || x > term->cols)
return; return;
ldata = scrlineptr(y); ldata = scrlineptr(y);