From 411c9b632adfad234aacf9724c26d19ee38c1a8b Mon Sep 17 00:00:00 2001
From: Christian Neukirchen <chneukirchen@gmail.com>
Date: Wed, 13 Jul 2016 21:08:05 +0200
Subject: blaze822: detect too short/empty headers

---
 blaze822.c | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'blaze822.c')

diff --git a/blaze822.c b/blaze822.c
index 6d1b643..4276323 100644
--- a/blaze822.c
+++ b/blaze822.c
@@ -404,6 +404,9 @@ blaze822_hdr_(struct message *mesg, const char *hdr, size_t hdrlen)
 {
 	char *v;
 
+	if (mesg->msg + hdrlen - 1 >= mesg->end)
+		return 0;  // header too small for the key, probably empty
+
 	// special case: first header, no leading nul
 	if (memcmp(mesg->msg, hdr+1, hdrlen-1) == 0)
 		v = mesg->msg;
-- 
cgit 1.4.1