raster pushed a commit to branch master. http://git.enlightenment.org/core/efl.git/commit/?id=cc9a8a7dfe47b0d33b6a03d1c8473cd15190ff17
commit cc9a8a7dfe47b0d33b6a03d1c8473cd15190ff17 Author: Carsten Haitzler (Rasterman) <ras...@rasterman.com> Date: Fri Sep 29 12:07:48 2017 +0900 evas cserve - fix validation of cserve mesg size field fix coverity CID 1039567 --- src/bin/evas/evas_cserve2_slaves.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/src/bin/evas/evas_cserve2_slaves.c b/src/bin/evas/evas_cserve2_slaves.c index f790357bd8..72fc143c1c 100644 --- a/src/bin/evas/evas_cserve2_slaves.c +++ b/src/bin/evas/evas_cserve2_slaves.c @@ -222,6 +222,11 @@ _slave_proc_read_cb(int fd, Fd_Flags flags, void *data) { return; } + if ((ints[0] < 0) || (ints[0] > (128 * 1024))) + { + ERR("Invalid size to read: %i", ints[0]); + return; + } s->read.size = ints[0]; s->read.cmd = ints[1]; if (s->read.size) --