[Ming-cvs] [libming/libming] 1a1d27: Change type of size variable in readBytes

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

  Branch: refs/heads/master
  Home:   https://github.com/libming/libming
  Commit: 1a1d2704cb19f2d3299f042bb3a4783c960b0a9a
      https://github.com/libming/libming/commit/1a1d2704cb19f2d3299f042bb3a4783c960b0a9a
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2017-10-13 (Fri, 13 Oct 2017)

  Changed paths:
    M NEWS
    M util/read.c
    M util/read.h

  Log Message:
  -----------
  Change type of size variable in readBytes

size should have type unsigned long instead of int in order
to avoid overflows and lossy casts when passing U30 integers.

This commit fixes CVE-2017-9989 (fixes #86).

  Commit: 847b9897940521a325f491965737b7291603caf1
      https://github.com/libming/libming/commit/847b9897940521a325f491965737b7291603caf1
  Author: Hugo Lefeuvre <hl...@de...>
  Date:   2017-10-13 (Fri, 13 Oct 2017)

  Changed paths:
    M util/read.c

  Log Message:
  -----------
  Avoid NULL pointer dereference in util/read.c.

Make sure that buf isn't dereferenced if malloc failed. In this
case, report error and abort.

Compare: https://github.com/libming/libming/compare/447821c5cf76...847b98979405