Check for buffer overflow in strtod ascii division.

author: Tor Andersson <tor.andersson@artifex.com> 2016-09-21 15:22:08 +0200
committer: Tor Andersson <tor.andersson@artifex.com> 2016-09-23 12:40:33 +0200
commit: 3a29d83d78af4c580d02bae6ae7a81127005a8b6 (patch)
tree: e90a6afdb9a0a620373650f1321c9edf2b9ebf19 /source/fitz/strtod.c
parent: 9a443ad598736a9faac39abc9bdceb0507fb05f8 (diff)
download: mupdf-3a29d83d78af4c580d02bae6ae7a81127005a8b6.tar.xz
1 files changed, 1 insertions, 0 deletions
diff --git a/source/fitz/strtod.c b/source/fitz/strtod.c
index 4f0675fe..35ddd6ed 100644
--- a/source/fitz/strtod.c
+++ b/source/fitz/strtod.c
@@ -429,6 +429,7 @@ xx:
 		n -= c<<b;
 		*p++ = c + '0';
 		(*na)++;
+		if (*na >= Ndig) break; /* abort if overflowing */
 	}
 	*p = 0;
 }
author	Tor Andersson <tor.andersson@artifex.com>	2016-09-21 15:22:08 +0200
committer	Tor Andersson <tor.andersson@artifex.com>	2016-09-23 12:40:33 +0200
commit	3a29d83d78af4c580d02bae6ae7a81127005a8b6 (patch)
tree	e90a6afdb9a0a620373650f1321c9edf2b9ebf19 /source/fitz/strtod.c
parent	9a443ad598736a9faac39abc9bdceb0507fb05f8 (diff)
download	mupdf-3a29d83d78af4c580d02bae6ae7a81127005a8b6.tar.xz