ElderShell/EverWrath
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 9

fix(deps/zlib): CVE-2022-37434: Potential Vulnerability in Cloned Function (#21599)

Browse source 
https://nvd.nist.gov/vuln/detail/CVE-2022-37434
madler/zlib@eff308a
This commit is contained in:
tabudz 2025-03-10 04:27:37 +07:00 committed by GitHub
parent 5ec85e527a
commit 0b24431768
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 3 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
deps/zlib/inflate.c vendored
View file

@ -763,9 +763,10 @@ int flush;
copy = state->length;
if (copy > have) copy = have;
if (copy) {
len = state->head->extra_len - state->length;
if (state->head != Z_NULL &&
state->head->extra != Z_NULL) {
len = state->head->extra_len - state->length;
state->head->extra != Z_NULL &&
len < state->head->extra_max) {
zmemcpy(state->head->extra + len, next,
len + copy > state->head->extra_max ?
state->head->extra_max - len : copy);