openkylin
/
libssh2
mirror of https://gitee.com/openkylin/libssh2.git
9
0
Fork 1
Code Issues Projects Releases Wiki Activity

CVE-2020-22218 安全更新:access out of bounds

This commit is contained in:
suzijiu 2023-12-19 22:55:54 +08:00
parent dda2ea2e0e
commit 0afa5c46d1
2 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
debian/changelog vendored
View File

@ -1,5 +1,6 @@
libssh2 (1.10.0-ok1) yangtze; urgency=low
libssh2 (1.10.0-ok5) yangtze; urgency=low
* Initial release.
* CVE-2020-22218 安全更新access out of bounds
-- suzijiu <981811971@qq.com> Tue, 19 Dec 2023 22:38:48 +0800
-- Luoyaoming <luoyaoming@kylinos.cn> Fri, 09 Dec 2022 09:50:06 +0800

2
src/transport.c
View File

@ -472,7 +472,7 @@ int _libssh2_transport_read(LIBSSH2_SESSION * session)
/* Get a packet handle put data into. We get one to
hold all data, including padding and MAC. */
p->payload = LIBSSH2_ALLOC(session, total_num);
if(!p->payload) {
if(total_num == 0 || !p->payload) {
return LIBSSH2_ERROR_ALLOC;
}
p->total_num = total_num;