Mercurial > pidgin.yaz
diff libpurple/protocols/msn/slpcall.c @ 29466:69077f3993f6
Fix CVE-2010-0277, a possible remote crash when parsing an incoming
SLP message. Discovered by Fabian Yamaguchi.
| author | Mark Doliner <mark@kingant.net> |
|---|---|
| date | Tue, 16 Feb 2010 08:54:07 +0000 |
| parents | 59b0c556f787 |
| children | 119bd7b072eb a99b6dcdb60d |
line wrap: on
line diff
--- a/libpurple/protocols/msn/slpcall.c Tue Feb 16 08:50:49 2010 +0000 +++ b/libpurple/protocols/msn/slpcall.c Tue Feb 16 08:54:07 2010 +0000 @@ -199,7 +199,7 @@ slpcall = NULL; body = slpmsg->buffer; - body_len = slpmsg->size; + body_len = slpmsg->offset; if (slpmsg->flags == 0x0 || slpmsg->flags == 0x1000000) {