tequilaOS/platform_external_selinux
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

libsepol: cil: prevent stack buffer overflow in cil_expr_to_string

Browse source 
Fix the test to prevent overflowing the stack buffer for
boolean expressions.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
This commit is contained in:
Stephen Smalley 2018-05-09 11:22:46 -04:00
parent 84b19ae72e
commit 3ca8762efd
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
libsepol/cil/src/cil_tree.c
View file

@ -339,7 +339,7 @@ static int cil_expr_to_string(struct cil_list *expr, char **out)
int pos = 0;
cil_list_for_each(curr, expr) {
if (pos > COND_EXPR_MAXDEPTH) {
if (pos >= COND_EXPR_MAXDEPTH) {
rc = SEPOL_ERR;
goto exit;
}