commit | 32d78cbdba4d5dcf9286ec7d7608b0a4c62e6ff7 | [log] [tgz] |
---|---|---|
author | Tianjie Xu <xunchang@google.com> | Wed Sep 21 14:58:11 2016 -0700 |
committer | Liisa Anttonen <liisa.anttonen@nedevicesw.com> | Thu Dec 22 14:55:16 2016 +0200 |
tree | a791c102ea2b61a8fee4f31865ca891e8becc0cb | |
parent | 4384180eee4f6b7681a967517b229063bc7a7b00 [diff] |
Fix out of bound access in libziparchive The boundary check of an invalid EOCD record may succeed due to the overflow of uint32_t. Fix the check. Test: Open the crash.apk and libziparchive reports the offset error as expected. Bug: 31251826 Change-Id: I1d8092a19b73886a671bc9d291cfc27d65e3d236 (cherry picked from commit ae8180c06dee228cd1378c56afa6020ae98d8a24) (cherry picked from commit 1ee4892e66ba314131b7ecf17e98bb1762c4b84c)