Skip to content

Commit

Permalink
Fix possible read out of bounds in ucs2_to_utf8
Browse files Browse the repository at this point in the history 
Check that the current character is not the null character after
ensuring we are not beyond the end of the buffer.

Signed-off-by: Dan Robertson <dan@dlrobertson.com>
  • Loading branch information
@dlrobertson @frozencemetery
dlrobertson authored and frozencemetery committed Sep 30, 2021
1 parent 572defb commit b6bb490
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/efibootmgr.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -938,7 +938,7 @@ ucs2_to_utf8(const uint16_t * const chars, ssize_t limit)
return NULL;
memset(ret, 0, limit * 6 +1);

for (i=0, j=0; chars[i] && i < (limit >= 0 ? limit : i+1); i++,j++) {
for (i=0, j=0; i < (limit >= 0 ? limit : i+1) && chars[i]; i++,j++) {
if (chars[i] <= 0x7f) {
ret[j] = chars[i];
} else if (chars[i] > 0x7f && chars[i] <= 0x7ff) {
Expand Down

0 comments on commit b6bb490

Please # to comment.