haraldwolff
/
collabora-online
mirror of https://github.com/CollaboraOnline/online.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

wsd, clientsession: guard against negative w/h in clientvisiblearea 

Signed-off-by: Miklos Vajna <vmiklos@collabora.com>
Change-Id: I34435276afbdc02b6e820b630560608f16f3a0e0
pull/8392/head
Miklos Vajna 2024-02-23 09:22:22 +01:00 committed by Caolán McNamara
parent 6f7f0d6ace
commit c3c80f00a6
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
fuzzer/data/crash-2109da83096efe2ad6c43f5648cc2ca25c4cacab 100644
View File

Binary file not shown.

10
wsd/ClientSession.cpp
View File

@ -775,6 +775,16 @@ bool ClientSession::_handleInput(const char *buffer, int length)
_splitY = splitY;
}
// Untrusted user input, make sure these are not negative.
if (width < 0)
{
width = 0;
}
if (height < 0)
{
height = 0;
}
_clientVisibleArea = Util::Rectangle(x, y, width, height);
return forwardToChild(std::string(buffer, length), docBroker);
}