]> git.ipfire.org Git - thirdparty/curl.git/commit
ntlm: precaution against super huge type2 offsets
authorDaniel Stenberg <daniel@haxx.se>
Tue, 27 Apr 2021 09:12:23 +0000 (11:12 +0200)
committerDaniel Stenberg <daniel@haxx.se>
Tue, 27 Apr 2021 14:02:02 +0000 (16:02 +0200)
commit3e820fbf25f38743fd30e0ce96ba9ae34791aa7c
treefba7222a3035ea33f6076dce52a69d530ca937d5
parent826c438c61ddf8ab4e0b16a584f7fa526bc417f9
ntlm: precaution against super huge type2 offsets

... which otherwise caused an integer overflow and circumvented the if()
conditional size check.

Detected by OSS-Fuzz
Bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33720
Assisted-by: Max Dymond
Closes #6975
lib/vauth/ntlm.c