• Ian Goldberg's avatar
    Guard against a potential integer overflow in future code paths · 187a09ac
    Ian Goldberg authored
    * b64.c (otrl_base64_otr_encode): In case some future code path
    tries to call otrl_base64_otr_encode with a buffer more than
    3/4 the size of all addressable memory, return NULL rather than
    causing an integer overflow and a heap overrun.  Thanks to
    David Remahl <david@remahl.se> for the report.
    
    * proto.c (otrl_proto_create_data): Tiny refactor to call
    otrl_base64_otr_encode instead of duplicating the code here.
    
    Fixes #64
    187a09ac
Name
Last commit
Last update
packaging/fedora Loading commit data...
src Loading commit data...
test_suite Loading commit data...
toolkit Loading commit data...
.gitignore Loading commit data...
AUTHORS Loading commit data...
COPYING Loading commit data...
COPYING.LIB Loading commit data...
ChangeLog Loading commit data...
INSTALL Loading commit data...
Makefile.am Loading commit data...
NEWS Loading commit data...
Protocol-v1.txt Loading commit data...
Protocol-v2.html Loading commit data...
Protocol-v3.html Loading commit data...
README Loading commit data...
UPGRADING Loading commit data...
bootstrap Loading commit data...
configure.ac Loading commit data...
libotr.m4 Loading commit data...
libotr.pc.in Loading commit data...
makedist Loading commit data...