d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update vendor/libarchive to libarchive/libarchive@1271f775d

Browse Source 
Bugfixes:
OSS-Fuzz #44843 (security):
  RAR reader: fix null-dereference in RAR (v4) filter code

Obtained from:		libarchive
Libarchive commit:	1271f775dc917798ad7d03c3b3bd66bacad03603
This commit is contained in:
Martin Matuska 2022-02-21 12:04:05 +01:00
parent 3c540f9694
commit 8b3c992251
1 changed files with 9 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
libarchive/archive_read_support_format_rar.c
View File

@ -3328,20 +3328,25 @@ run_filters(struct archive_read *a)
struct rar *rar = (struct rar *)(a->format->data);
struct rar_filters *filters = &rar->filters;
struct rar_filter *filter = filters->stack;
size_t start = filters->filterstart;
size_t end = start + filter->blocklength;
size_t start, end;
int64_t tend;
uint32_t lastfilteraddress;
uint32_t lastfilterlength;
int ret;
if (filters == NULL || filter == NULL)
return (0);
start = filters->filterstart;
end = start + filter->blocklength;
filters->filterstart = INT64_MAX;
tend = (int64_t)end;
ret = expand(a, &tend);
if (ret != ARCHIVE_OK)
return (ret);
return 0;
if (tend < 0)
return (ARCHIVE_FATAL);
return 0;
end = (size_t)tend;
if (end != start + filter->blocklength)
return 0;