From 069dd08d8dbbbadc4e6780d5c881a24bce79a4f7 Mon Sep 17 00:00:00 2001
From: Bram Moolenaar <Bram@vim.org>
Date: Mon, 4 May 2015 09:56:49 +0200
Subject: patch 7.4.714 Problem:    Illegal memory access when there are
 illegal bytes. Solution:   Check the byte length of the character. (Dominique
 Pelle)

---
 src/regexp.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/regexp.c')

diff --git a/src/regexp.c b/src/regexp.c
index 6ae05f8f9..85e0458de 100644
--- a/src/regexp.c
+++ b/src/regexp.c
@@ -6113,7 +6113,7 @@ do_class:
 	    {
 		if (ireg_ic && enc_utf8)
 		    cf = utf_fold(utf_ptr2char(opnd));
-		while (count < maxcount)
+		while (count < maxcount && (*mb_ptr2len)(scan) >= len)
 		{
 		    for (i = 0; i < len; ++i)
 			if (opnd[i] != scan[i])
-- 
cgit v1.2.1