← Back to branch summary

~ubuntu-branches/ubuntu/raring/clamav/raring

« back to all changes in this revision

Viewing changes to libclamav/spin.c

  • Committer: Bazaar Package Importer
  • Author(s): Stephen Gran
  • Date: 2008-04-15 17:48:43 UTC
  • Revision ID: james.westby@ubuntu.com-20080415174843-kqvw1ovxmj1trlni
Tags: 0.92.1~dfsg2-1
* libclamav/pe.c: possible integer overflow in wwpack
* [CVE-2008-1100]: libclamav/pe.c: possible integer overflow in upack
* [CVE-2008-1387]: libclamav/spin.c: possible integer overflow
* libclamav/unarj.c: DoS in unarj

Show diffs side-by-side

added added

removed removed

Lines of Context:
libclamav/spin.c
419
419
    /*    len = cli_readint32(ep+0x2fc8); -- Using vsizes instead */
420
420
 
421
421
    for (j=0; j<sectcnt; j++) {
422
 
      if (sections[j].rva <= key32 && sections[j].rva+sections[j].rsz > key32)
 
422
      if (sections[j].rva <= key32 && key32-sections[j].rva < sections[j].vsz && CLI_ISCONTAINED(src + sections[j].raw, sections[j].rsz, src + sections[j].raw, key32 - sections[j].rva))
423
423
        break;
424
424
    }
425
425