Intravision/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2024-06-22 22:11:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

[USER32] Don't allow invalid 'IME File' values

Browse source 
Improve security. CORE-11700
This commit is contained in:
Katayama Hirofumi MZ 2022-09-16 17:59:48 +09:00
parent 787bbf0693
commit b4575eccd7
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
win32ss/user/user32/windows/input.c
View file

@ -801,7 +801,11 @@ IntLoadKeyboardLayout(
{
WCHAR szPath[MAX_PATH];
GetSystemLibraryPath(szPath, _countof(szPath), szImeFileName);
if (GetFileAttributesW(szPath) == INVALID_FILE_ATTRIBUTES) /* Does not exist? */
/* We don't allow the invalid "IME File" values for security reason */
if (dwType != REG_SZ || szImeFileName[0] == 0 ||
wcsspn(szImeFileName, L":\\/") != wcslen(szImeFileName) ||
GetFileAttributesW(szPath) == INVALID_FILE_ATTRIBUTES) /* Does not exist? */
{
bIsIME = FALSE;
wHigh = 0;