ReceiveTempSMS
/
Sweden-Number
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

ntdll: Fix a buffer overflow in environment variable expansion. 

Wine-Bug: https://bugs.winehq.org/show_bug.cgi?id=52093
Signed-off-by: Alexandre Julliard <julliard@winehq.org>
This commit is contained in:
Alexandre Julliard 2021-11-23 21:00:14 +01:00
parent 5784c80ba1
commit 95931fcd36
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
dlls/ntdll/unix/env.c
View File

@ -1321,7 +1321,7 @@ static void add_dynamic_environment( WCHAR **env, SIZE_T *pos, SIZE_T *size )
static WCHAR *expand_value( WCHAR *env, SIZE_T size, const WCHAR *src, SIZE_T src_len )
{
SIZE_T len, retlen = src_len, count = 0;
SIZE_T len, retlen = src_len + 1, count = 0;
const WCHAR *var;
WCHAR *ret;
@ -1364,7 +1364,7 @@ static WCHAR *expand_value( WCHAR *env, SIZE_T size, const WCHAR *src, SIZE_T sr
}
if (len >= retlen - count)
{
retlen *= 2;
retlen = max( retlen * 2, count + len + 1 );
ret = realloc( ret, retlen * sizeof(WCHAR) );
}
memcpy( ret + count, var, len * sizeof(WCHAR) );