Date: Wed, 10 Jul 2013 10:57:09 +0000 (UTC) From: David Chisnall <theraven@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: svn commit: r253149 - head/usr.bin/dtc Message-ID: <201307101057.r6AAv97Q097966@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: theraven Date: Wed Jul 10 10:57:09 2013 New Revision: 253149 URL: http://svnweb.freebsd.org/changeset/base/253149 Log: Report error for out-of-range numerical inputs. Requested by brooks. Modified: head/usr.bin/dtc/fdt.cc Modified: head/usr.bin/dtc/fdt.cc ============================================================================== --- head/usr.bin/dtc/fdt.cc Wed Jul 10 10:51:12 2013 (r253148) +++ head/usr.bin/dtc/fdt.cc Wed Jul 10 10:57:09 2013 (r253149) @@ -30,6 +30,8 @@ * $FreeBSD$ */ +#define __STDC_LIMIT_MACROS 1 + #include "fdt.hh" #include <algorithm> @@ -281,6 +283,12 @@ property::parse_cells(input_buffer &inpu valid = false; return; } + if ((val < 0) || (val > UINT32_MAX)) + { + input.parse_error("Value out of range"); + valid = false; + return; + } push_big_endian(v.byte_data, (uint32_t)val); input.next_token(); }
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201307101057.r6AAv97Q097966>