mirrors/zint-barcode-generator
1
0
Fork 0
mirror of https://git.code.sf.net/p/zint/code synced 2024-09-19 15:28:56 -04:00
Code Issues Projects Releases Packages Wiki Activity

Prevent buffer overrun in Code One

Browse source 
Fixes #184 reported by Milton Neal
This commit is contained in:
Robin Stuart 2020-03-29 14:23:31 +01:00
parent 52214c5a1c
commit 0244904c1f
1 changed files with 10 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
backend/code1.c
View file

@ -441,9 +441,11 @@ static int c1_encode(struct zint_symbol *symbol, unsigned char source[], unsigne
if (j == 13) {
latch = 0;
for (i = sp + 13; i < length; i++) {
if (!((source[i] >= '0') && (source[i] <= '9'))) {
latch = 1;
if ((length - sp) >= 14) {
for (i = sp + 13; i < length; i++) {
if (!((source[i] >= '0') && (source[i] <= '9'))) {
latch = 1;
}
}
}
@ -490,9 +492,11 @@ static int c1_encode(struct zint_symbol *symbol, unsigned char source[], unsigne
if (j == 7) {
latch = 0;
for (i = sp + 7; i < length; i++) {
if (!((source[sp + i] >= '0') && (source[sp + i] <= '9'))) {
latch = 1;
if ((length - sp) >= 8) {
for (i = sp + 7; i < length; i++) {
if (!((source[sp + i] >= '0') && (source[sp + i] <= '9'))) {
latch = 1;
}
}
}