R5Reloaded/r5sdk
1
0
Fork 0
mirror of https://github.com/Mauler125/r5sdk.git synced 2025-02-09 19:15:03 +01:00
Code Issues Packages Projects Releases Wiki Activity

CLZSS: Fix bug causing iterator to go out of bounds

Browse Source 
Check if 'position' exceeds buffer size.
This commit is contained in:
Kawe Mazidjatari 2023-04-05 22:31:37 +02:00
parent dbe1850ec1
commit e76f5b98c8
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
r5dev/tier1/lzss.cpp
View File

@ -329,13 +329,15 @@ unsigned int CLZSS::SafeUncompress( unsigned char *pInput, unsigned char *pOutpu
{
break;
}
unsigned char *pSource = pOutput - position - 1;
if ( totalBytes + count > unBufSize )
if ( position > totalBytes || // out of bounds
totalBytes + count > unBufSize )
{
return 0;
}
unsigned char* pSource = pOutput - position - 1;
for ( int i=0; i<count; i++ )
{
*pOutput++ = *pSource++;