falso
/
qemu-irix
mirror of https://github.com/n64decomp/qemu-irix.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

vmdk: Fix vmdk_parse_extents 

An extra 'p++' after while loop when *p == '\n' will move p to unknown
data position, risking parsing junk data or memory access violation.

Cc: qemu-stable@nongnu.org
Signed-off-by: Fam Zheng <famz@redhat.com>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
This commit is contained in:
Fam Zheng 2013-10-11 19:48:29 +08:00 committed by Kevin Wolf
parent b681072d20
commit 899f1ae219
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
block/vmdk.c
View File

@ -772,10 +772,13 @@ static int vmdk_parse_extents(const char *desc, BlockDriverState *bs,
} }
next_line: next_line:
/* move to next line */ /* move to next line */
while (*p && *p != '\n') { while (*p) {
if (*p == '\n') {
p++;
break;
}
p++; p++;
} }
p++;
} }
return 0; return 0;
} }