Skip to content

Commit

Permalink
miniz_tinfl.c: apply CVE-2018-12913 fix from mainstream.
Browse files Browse the repository at this point in the history 
Orig. P/R: richgel999/miniz#329.
  • Loading branch information
@sezero
sezero committed Dec 29, 2024
1 parent 929a534 commit d76c4cd
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions src/miniz_tinfl.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -498,6 +498,12 @@ tinfl_status tinfl_decompress(tinfl_decompressor *r, const mz_uint8 *pIn_buf_nex
bit_buf >>= code_len;
num_bits -= code_len;

/* assert(sym2 != 0 && counter != 0); */
if (sym2 == 0 && counter == 0)
{
TINFL_CR_RETURN_FOREVER(40, TINFL_STATUS_FAILED);
}

pOut_buf_cur[0] = (mz_uint8)counter;
if (sym2 & 256)
{
Expand Down

0 comments on commit d76c4cd

Please sign in to comment.