diff mbox series

[OB] debuginfod-client: Fix out-of-bounds write

Message ID	20221101235559.63675-1-amerey@redhat.com
State	Committed
Headers	DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 756EA3858D37 To: elfutils-devel@sourceware.org Subject: [PATCH OB] debuginfod-client: Fix out-of-bounds write Date: Tue, 1 Nov 2022 19:55:59 -0400 Message-Id: <20221101235559.63675-1-amerey@redhat.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII"; x-default=true Precedence: list From: Aaron Merey via Elfutils-devel <elfutils-devel@sourceware.org> Reply-To: Aaron Merey <amerey@redhat.com> Errors-To: elfutils-devel-bounces+patchwork=sourceware.org@sourceware.org Sender: "Elfutils-devel" <elfutils-devel-bounces+patchwork=sourceware.org@sourceware.org>
Series	[OB] debuginfod-client: Fix out-of-bounds write \| [OB] debuginfod-client: Fix out-of-bounds write

Commit Message

Aaron Merey Nov. 1, 2022, 11:55 p.m. UTC

  Pushed as obvious.

Return early from path_escape when '\0' is seen in order to prevent
an out-of-bounds write to the dest buffer.

Signed-off-by: Aaron Merey <amerey@redhat.com>
---
 debuginfod/debuginfod-client.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff mbox series

Patch

diff --git a/debuginfod/debuginfod-client.c b/debuginfod/debuginfod-client.c
index d097ca49..0c4a00cf 100644
--- a/debuginfod/debuginfod-client.c
+++ b/debuginfod/debuginfod-client.c
@@ -595,8 +595,7 @@  path_escape (const char *src, char *dest)
       {
       case '\0':
         dest[q] = '\0';
-        q = PATH_MAX-1; /* escape for loop too */
-        break;
+	return;
       case '/': /* escape / to prevent dir escape */
         dest[q++]='#';
         dest[q++]='#';