diff options
author | Cedric BAIL <cedric.bail@free.fr> | 2012-05-30 02:24:12 +0000 |
---|---|---|
committer | Cedric BAIL <cedric.bail@free.fr> | 2012-05-30 02:24:12 +0000 |
commit | 733fcf64d1d8dd8ff33e635051031080e4d0a4bf (patch) | |
tree | 9e9a12ed4bf53e7fa37b647ede738da2a6977807 | |
parent | 15f6f3009d650fb06135e8a70b4248241ec45d6e (diff) | |
download | eet-733fcf64d1d8dd8ff33e635051031080e4d0a4bf.tar.gz |
eet: backport r71524.
SVN revision: 71525
-rw-r--r-- | ChangeLog | 7 | ||||
-rw-r--r-- | src/lib/eet_cipher.c | 2 |
2 files changed, 6 insertions, 3 deletions
@@ -546,8 +546,11 @@ * JPEG encode and decode in eet now uses ISLOW (not IFAST) due to noticable quality losses in the chase for speed. It will use IFAST for quality less than 60 when encoding - + 2011-12-02 Carsten Haitzler (The Rasterman) 1.5.0 release - + +2012-05-30 Cedric Bail + + * Check that gnutls and openssl don't return below zero size during decipher. diff --git a/src/lib/eet_cipher.c b/src/lib/eet_cipher.c index 89ee65d..b0ad6fd 100644 --- a/src/lib/eet_cipher.c +++ b/src/lib/eet_cipher.c @@ -1174,7 +1174,7 @@ eet_decipher(const void *data, /* Get the decrypted data size */ tmp = *ret; tmp = ntohl(tmp); - if (tmp > tmp_len) + if (tmp > tmp_len || tmp <= 0) goto on_error; /* Update the return values */ |