Author: amassari Date: Fri Jul 20 20:11:39 2012 New Revision: 1363932 URL: http://svn.apache.org/viewvc?rev=1363932&view=rev Log: Add a check for buffer overflow
Modified: xerces/c/trunk/src/xercesc/util/XMLUri.cpp Modified: xerces/c/trunk/src/xercesc/util/XMLUri.cpp URL: http://svn.apache.org/viewvc/xerces/c/trunk/src/xercesc/util/XMLUri.cpp?rev=1363932&r1=1363931&r2=1363932&view=diff ============================================================================== --- xerces/c/trunk/src/xercesc/util/XMLUri.cpp (original) +++ xerces/c/trunk/src/xercesc/util/XMLUri.cpp Fri Jul 20 20:11:39 2012 @@ -1537,7 +1537,8 @@ bool XMLUri::isValidRegistryBasedAuthori } else if (authority[index] == chPercent) // '%' { - if (XMLString::isHex(authority[index+1]) && // 1st hex + if ((index+2) < authLen && + XMLString::isHex(authority[index+1]) && // 1st hex XMLString::isHex(authority[index+2]) ) // 2nd hex index +=3; else --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@xerces.apache.org For additional commands, e-mail: commits-h...@xerces.apache.org