Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2024-10-04 16:36:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

[RTL]

Browse source 
Properly check for total length in LdrpGetProcedureAddress().
It contains more than just a name.
Fixes a buffer overrun.

CID #716122

svn path=/trunk/; revision=62618
This commit is contained in:
Pierre Schweitzer 2014-04-05 13:13:01 +00:00
parent 9d713d990a
commit 283ab16ed6
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
reactos/dll/ntdll/ldr/ldrutils.c
View file

@ -2267,7 +2267,7 @@ LdrpGetProcedureAddress(IN PVOID BaseAddress,
}
/* Check if our buffer is large enough */
if (Name->Length > sizeof(ImportBuffer))
if (Length > sizeof(ImportBuffer))
{
/* Allocate from heap, plus 2 bytes for the Hint */
ImportName = RtlAllocateHeap(RtlGetProcessHeap(),