changeset 25598:9931796e1765

*** Plucked rev 9dd1c4c3 (khc@pidgin.im): Fixes a buffer overflow in the ZDI-08-054 report
author Paul Aurich <paul@darkrain42.org>
date Sat, 02 May 2009 21:09:37 +0000
parents 54dcfe059dd4
children b9a90f34b780
files libpurple/protocols/msn/slplink.c
diffstat 1 files changed, 2 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/libpurple/protocols/msn/slplink.c	Sat May 02 21:08:59 2009 +0000
+++ b/libpurple/protocols/msn/slplink.c	Sat May 02 21:09:37 2009 +0000
@@ -493,7 +493,7 @@
 {
 	MsnSlpMessage *slpmsg;
 	const char *data;
-	gsize offset;
+	guint64 offset;
 	gsize len;
 
 #ifdef MSN_DEBUG_SLP
@@ -565,6 +565,7 @@
 			if (slpmsg->buffer == NULL)
 			{
 				purple_debug_error("msn", "Failed to allocate buffer for slpmsg\n");
+				msn_slpmsg_destroy(slpmsg);
 				return;
 			}
 		}