From 1ff1ff3dd0d00990ddf88c37233fdb70dfdad746 Mon Sep 17 00:00:00 2001
From: Christian Neukirchen <chneukirchen@gmail.com>
Date: Thu, 14 Jul 2016 13:27:14 +0200
Subject: blaze822: avoid overflow in blaze822_hdr_

---
 blaze822.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'blaze822.c')

diff --git a/blaze822.c b/blaze822.c
index b6a5698..7572788 100644
--- a/blaze822.c
+++ b/blaze822.c
@@ -421,7 +421,7 @@ blaze822_hdr_(struct message *mesg, const char *hdr, size_t hdrlen)
 {
 	char *v;
 
-	if (mesg->msg + hdrlen - 1 >= mesg->end)
+	if (hdrlen == 0 || hdrlen-1 >= (size_t)(mesg->end - mesg->msg))
 		return 0;  // header too small for the key, probably empty
 
 	// special case: first header, no leading nul
-- 
cgit 1.4.1