Skip to content
Snippets Groups Projects
Commit d6544a77 authored by Rob Swindell's avatar Rob Swindell :speech_balloon:
Browse files

Enforce telbuf size bounds (don't just log the overflow condition)

This should resolve CID 453850
parent 8b1031d8
No related branches found
No related tags found
1 merge request!463MRC mods by Codefenix (2024-10-20)
Pipeline #4247 passed
...@@ -2128,8 +2128,10 @@ void input_thread(void *arg) ...@@ -2128,8 +2128,10 @@ void input_thread(void *arg)
wrbuf=inbuf; wrbuf=inbuf;
else else
wrbuf=telnet_interpret(sbbs, inbuf, rd, telbuf, wr); wrbuf=telnet_interpret(sbbs, inbuf, rd, telbuf, wr);
if(wr > (int)sizeof(telbuf)) if(wr > (int)sizeof(telbuf)) {
lprintf(LOG_ERR,"!TELBUF OVERFLOW (%d>%d)",wr,(int)sizeof(telbuf)); lprintf(LOG_ERR,"!TELBUF OVERFLOW (%d>%d)",wr,(int)sizeof(telbuf));
wr = sizeof(telbuf);
}
if(!(sbbs->console & CON_RAW_IN)) if(!(sbbs->console & CON_RAW_IN))
sbbs->translate_input(wrbuf, wr); sbbs->translate_input(wrbuf, wr);
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment