!1 CVE-2020-22218 安全更新:access out of bounds

Merge pull request !1 from suzijiu/openkylin/yangtze
This commit is contained in:
zhangtianxiong 2024-01-05 07:00:51 +00:00 committed by Gitee
commit 257812c4b9
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
2 changed files with 3 additions and 2 deletions

3
debian/changelog vendored
View File

@ -1,5 +1,6 @@
libssh2 (1.10.0-ok1) yangtze; urgency=low libssh2 (1.10.0-ok1) yangtze; urgency=low
* Initial release. * Initial release
-- Luoyaoming <luoyaoming@kylinos.cn> Fri, 09 Dec 2022 09:50:06 +0800 -- Luoyaoming <luoyaoming@kylinos.cn> Fri, 09 Dec 2022 09:50:06 +0800

View File

@ -472,7 +472,7 @@ int _libssh2_transport_read(LIBSSH2_SESSION * session)
/* Get a packet handle put data into. We get one to /* Get a packet handle put data into. We get one to
hold all data, including padding and MAC. */ hold all data, including padding and MAC. */
p->payload = LIBSSH2_ALLOC(session, total_num); p->payload = LIBSSH2_ALLOC(session, total_num);
if(!p->payload) { if(total_num == 0 || !p->payload) {
return LIBSSH2_ERROR_ALLOC; return LIBSSH2_ERROR_ALLOC;
} }
p->total_num = total_num; p->total_num = total_num;