Author: amassari
Date: Fri Jul 20 20:11:39 2012
New Revision: 1363932
URL: http://svn.apache.org/viewvc?rev=1363932&view=rev
Log:
Add a check for buffer overflow
Modified:
xerces/c/trunk/src/xercesc/util/XMLUri.cpp
Modified: xerces/c/trunk/src/xercesc/util/XMLUri.cpp
URL:
http://svn.apache.org/viewvc/xerces/c/trunk/src/xercesc/util/XMLUri.cpp?rev=1363932&r1=1363931&r2=1363932&view=diff
==============================================================================
--- xerces/c/trunk/src/xercesc/util/XMLUri.cpp (original)
+++ xerces/c/trunk/src/xercesc/util/XMLUri.cpp Fri Jul 20 20:11:39 2012
@@ -1537,7 +1537,8 @@ bool XMLUri::isValidRegistryBasedAuthori
}
else if (authority[index] == chPercent) // '%'
{
- if (XMLString::isHex(authority[index+1]) && // 1st hex
+ if ((index+2) < authLen &&
+ XMLString::isHex(authority[index+1]) && //
1st hex
XMLString::isHex(authority[index+2]) ) // 2nd hex
index +=3;
else
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
