libarchive: Cherry-pick upstream 2c8c83b9

Relevant vendor changes: Fix issue #948: out-of-bounds read in lha_read_data_none() admbugs: 877 Security: CVE-2017-14503
svn path=/vendor/libarchive/dist/; revision=336800
2018-07-28 00:55:57 +00:00 · 2018-07-28 00:55:57 +00:00 · 032a8914c1 · 2020-12-20 02:59:44 +00:00
commit 032a8914c1
parent f7158da37f
1 changed files with 6 additions and 0 deletions
--- a/libarchive/archive_read_support_format_lha.c
+++ b/libarchive/archive_read_support_format_lha.c
@ -701,6 +701,12 @@ archive_read_format_lha_read_header(struct archive_read *a,
 	 * Prepare variables used to read a file content.
 	 */
 	lha->entry_bytes_remaining = lha->compsize;
+	if (lha->entry_bytes_remaining < 0) {
+		archive_set_error(&a->archive,
+		    ARCHIVE_ERRNO_FILE_FORMAT,
+		    "Invalid LHa entry size");
+		return (ARCHIVE_FATAL);
+	}
 	lha->entry_offset = 0;
 	lha->entry_crc_calculated = 0;