azerothcore/azerothcore-wotlk
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix(deps/zlib): CVE-2022-37434: Potential Vulnerability in Cloned Function (#21599)

Browse Source 
https://nvd.nist.gov/vuln/detail/CVE-2022-37434
madler/zlib@eff308a
This commit is contained in:
tabudz
2025-03-10 04:27:37 +07:00
committed by GitHub
parent 5ec85e527a
commit 0b24431768
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
deps/zlib/inflate.c vendored
View File

@@ -763,9 +763,10 @@ int flush;
copy = state->length; copy = state->length;
if (copy > have) copy = have; if (copy > have) copy = have;
if (copy) { if (copy) {
len = state->head->extra_len - state->length;
if (state->head != Z_NULL && if (state->head != Z_NULL &&
state->head->extra != Z_NULL) { state->head->extra != Z_NULL &&
len = state->head->extra_len - state->length; len < state->head->extra_max) {
zmemcpy(state->head->extra + len, next, zmemcpy(state->head->extra + len, next,
len + copy > state->head->extra_max ? len + copy > state->head->extra_max ?
state->head->extra_max - len : copy); state->head->extra_max - len : copy);