Security patches from Apple: prevent int overflow when allocating memory

commit: e7d8be80ba634fa15ece6f503c33592e0d333361 [log] [tgz]
author: Neal Norwitz <nnorwitz@gmail.com> Thu Jul 31 17:17:14 2008 +0000
committer: Neal Norwitz <nnorwitz@gmail.com> Thu Jul 31 17:17:14 2008 +0000
tree: 4264163ebdcea24504f3842330602d98301cf659
parent: e70f8e1205b5fc60a30469db69bbee4d5d532d86 [diff] [blame]
diff --git a/Modules/mmapmodule.c b/Modules/mmapmodule.c
index c71d840..08b5a96 100644
--- a/Modules/mmapmodule.c
+++ b/Modules/mmapmodule.c

@@ -239,7 +239,7 @@
 		return(NULL);
 
 	/* silently 'adjust' out-of-range requests */
-	if ((self->pos + num_bytes) > self->size) {
+	if (num_bytes > self->size - self->pos) {
 		num_bytes -= (self->pos+num_bytes) - self->size;
 	}
 	result = Py_BuildValue("s#", self->data+self->pos, num_bytes);
commit	e7d8be80ba634fa15ece6f503c33592e0d333361	[log] [tgz]
author	Neal Norwitz <nnorwitz@gmail.com>	Thu Jul 31 17:17:14 2008 +0000
committer	Neal Norwitz <nnorwitz@gmail.com>	Thu Jul 31 17:17:14 2008 +0000
tree	4264163ebdcea24504f3842330602d98301cf659
parent	e70f8e1205b5fc60a30469db69bbee4d5d532d86 [diff] [blame]