diff options
author | Peter Wu <peter@lekensteyn.nl> | 2015-11-22 18:16:46 +0100 |
---|---|---|
committer | Peter Wu <peter@lekensteyn.nl> | 2015-11-25 12:36:43 +0000 |
commit | 7ea63cf9fe49bd58c4507ff583aac17a549a9e87 (patch) | |
tree | 7b985881535da514d4ebbff5e40844cc8cb2824d /trigcap.c | |
parent | b9d8d3cbe7138bab8568ef54f3af273e22310633 (diff) | |
download | wireshark-7ea63cf9fe49bd58c4507ff583aac17a549a9e87.tar.gz |
Fix buffer overrun in zlib decompression
After updating next_in (to remove the gzip header), avail_in must also
be updated. Failing to do makes zlib read past the input buffer. In
theory this would resukt in a buffer overrun of at most double the input
length, in practice zlib returns as soon as the compression fails (after
reading a few bytes).
Bug: 11548
Change-Id: If71691a2846338f46d866964a77cc4e74a9b61dd
Reviewed-on: https://code.wireshark.org/review/12038
Petri-Dish: Peter Wu <peter@lekensteyn.nl>
Tested-by: Petri Dish Buildbot <buildbot-no-reply@wireshark.org>
Reviewed-by: Peter Wu <peter@lekensteyn.nl>
(cherry picked from commit cec0593ae6c3bca65eff65741c2a10f3de3e0afe)
Reviewed-on: https://code.wireshark.org/review/12137
Diffstat (limited to 'trigcap.c')
0 files changed, 0 insertions, 0 deletions