* lib/zip_source_*: Verify user-supplied data. --HG-- branch : HEAD

commit: 7b221723b4566a43bcd304b408cc1c92d709af15 [log] [tgz]
author: Thomas Klausner <wiz@danbala.tuwien.ac.at> Thu Nov 18 16:28:13 2004 +0000
committer: Thomas Klausner <wiz@danbala.tuwien.ac.at> Thu Nov 18 16:28:13 2004 +0000
tree: eec2df0ed6657078d4f099a3dc0aa205082a302a
parent: cab859e691299721a017d49964545b797c1b22d8 [diff] [blame]
diff --git a/lib/zip_source_filep.c b/lib/zip_source_filep.c
index 8ebfb3a..71d03b9 100644
--- a/lib/zip_source_filep.c
+++ b/lib/zip_source_filep.c

@@ -1,5 +1,5 @@
 /*
-  $NiH: zip_source_filep.c,v 1.12 2004/11/17 21:55:13 wiz Exp $
+  $NiH: zip_source_filep.c,v 1.1 2004/11/18 15:06:24 wiz Exp $
 
   zip_source_filep.c -- create data source from FILE *
   Copyright (C) 1999, 2003, 2004 Dieter Baron and Thomas Klausner
@@ -62,6 +62,14 @@
     struct read_file *f;
     struct zip_source *zs;
 
+    if (za == NULL)
+	return NULL;
+
+    if (file == NULL || start < 0 || len < -1) {
+	_zip_error_set(&za->error, ZIP_ER_INVAL, 0);
+	return NULL;
+    }
+
     if ((f=(struct read_file *)malloc(sizeof(struct read_file))) == NULL) {
 	_zip_error_set(&za->error, ZIP_ER_MEMORY, 0);
 	return NULL;
commit	7b221723b4566a43bcd304b408cc1c92d709af15	[log] [tgz]
author	Thomas Klausner <wiz@danbala.tuwien.ac.at>	Thu Nov 18 16:28:13 2004 +0000
committer	Thomas Klausner <wiz@danbala.tuwien.ac.at>	Thu Nov 18 16:28:13 2004 +0000
tree	eec2df0ed6657078d4f099a3dc0aa205082a302a
parent	cab859e691299721a017d49964545b797c1b22d8 [diff] [blame]