From 527a2d86fb375fcc7b34e80fc47f4c7126fc12ba Mon Sep 17 00:00:00 2001
From: Bram Moolenaar <Bram@vim.org>
Date: Thu, 21 Feb 2019 22:28:51 +0100
Subject: patch 8.1.0968: crash when using search pattern \%Ufffffc23

Problem:    Crash when using search pattern \%Ufffffc23.
Solution:   Limit character to INT_MAX. (closes #4009)
---
 src/regexp_nfa.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/regexp_nfa.c')

diff --git a/src/regexp_nfa.c b/src/regexp_nfa.c
index 333c006f4..ba75834fc 100644
--- a/src/regexp_nfa.c
+++ b/src/regexp_nfa.c
@@ -1475,7 +1475,7 @@ nfa_regatom(void)
 			    default:  nr = -1; break;
 			}
 
-			if (nr < 0)
+			if (nr < 0 || nr > INT_MAX)
 			    EMSG2_RET_FAIL(
 			       _("E678: Invalid character after %s%%[dxouU]"),
 				    reg_magic == MAGIC_ALL);
-- 
cgit v1.2.1