Correct a denial-of-service vulnerability in zlib.

For reference, this bug was first reported at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=252253 Submitted by: "Dmitry V. Levin" <ldv@altlinux.org>
2004-08-26 19:37:06 +00:00 · 2004-08-26 19:37:06 +00:00 · 521adbdfc7
commit 521adbdfc7
parent 85231d66d4
2 changed files with 6 additions and 0 deletions
--- a/lib/libz/infback.c
+++ b/lib/libz/infback.c
@ -434,6 +434,9 @@ void FAR *out_desc;
                }
            }

+            if (state->mode == BAD)
+                break;
+
            /* build code tables */
            state->next = state->codes;
            state->lencode = (code const FAR *)(state->next);
--- a/lib/libz/inflate.c
+++ b/lib/libz/inflate.c
@ -864,6 +864,9 @@ int flush;
                }
            }

+            if (state->mode == BAD)
+                break;
+
            /* build code tables */
            state->next = state->codes;
            state->lencode = (code const FAR *)(state->next);