import: check overflow

Fixes CID#1548022 and CID#1548075.

diff --git a/src/import/import-raw.c b/src/import/import-raw.c
index ee9b297bfeb70d5e585cb9275321f2d9a6fd900f..78775b96d6798f154b2c65680a141c3d0e8866c5 100644 (file)
--- a/src/import/import-raw.c
+++ b/src/import/import-raw.c
@@ -409,6 +409,11 @@ static int raw_import_process(RawImport *i) {
                 goto finish;
         }
 
+        if ((size_t) l > sizeof(i->buffer) - i->buffer_size) {
+                r = log_error_errno(SYNTHETIC_ERRNO(EBADMSG), "Read input file exceeded maximum size.");
+                goto finish;
+        }
+
         i->buffer_size += l;
 
         if (i->compress.type == IMPORT_COMPRESS_UNKNOWN) {

diff --git a/src/import/import-tar.c b/src/import/import-tar.c
index 39df11b5ff6e94088ac40d761f1c07da93a23711..976c9182461f4caf5f66552127baac7f454acc06 100644 (file)
--- a/src/import/import-tar.c
+++ b/src/import/import-tar.c
@@ -276,6 +276,11 @@ static int tar_import_process(TarImport *i) {
                 goto finish;
         }
 
+        if ((size_t) l > sizeof(i->buffer) - i->buffer_size) {
+                r = log_error_errno(SYNTHETIC_ERRNO(EBADMSG), "Read input file exceeded maximum size.");
+                goto finish;
+        }
+
         i->buffer_size += l;
 
         if (i->compress.type == IMPORT_COMPRESS_UNKNOWN) {