|
Lines 917-922
Link Here
|
| 917 |
} else if(strncmp(magic,"ICRD",4) == 0){ |
917 |
} else if(strncmp(magic,"ICRD",4) == 0){ |
| 918 |
st_readdw(ft,&len); |
918 |
st_readdw(ft,&len); |
| 919 |
len = (len + 1) & ~1; |
919 |
len = (len + 1) & ~1; |
|
|
920 |
if (len > 254) { |
| 921 |
fprintf(stderr, "Possible buffer overflow hack attack (ICRD)!\n"); |
| 922 |
exit(109); |
| 923 |
} |
| 920 |
st_reads(ft,text,len); |
924 |
st_reads(ft,text,len); |
| 921 |
if (strlen(ft->comment) + strlen(text) < 254) |
925 |
if (strlen(ft->comment) + strlen(text) < 254) |
| 922 |
{ |
926 |
{ |
|
Lines 926-931
Link Here
|
| 926 |
} else if(strncmp(magic,"ISFT",4) == 0){ |
930 |
} else if(strncmp(magic,"ISFT",4) == 0){ |
| 927 |
st_readdw(ft,&len); |
931 |
st_readdw(ft,&len); |
| 928 |
len = (len + 1) & ~1; |
932 |
len = (len + 1) & ~1; |
|
|
933 |
if (len > 254) { |
| 934 |
fprintf(stderr, "Possible buffer overflow hack attack (ISFT)!\n"); |
| 935 |
exit(110); |
| 936 |
} |
| 929 |
st_reads(ft,text,len); |
937 |
st_reads(ft,text,len); |
| 930 |
if (strlen(ft->comment) + strlen(text) < 254) |
938 |
if (strlen(ft->comment) + strlen(text) < 254) |
| 931 |
{ |
939 |
{ |