commit | 27642459d39858bf013ebf7bc1c7338fe7687a6f | [log] [tgz] |
---|---|---|
author | Tianjie Xu <xunchang@google.com> | Wed Sep 21 14:58:11 2016 -0700 |
committer | Ted Meyer <tmathmeyer@google.com> | Fri Oct 21 12:19:01 2016 +0000 |
tree | 0996021cab2dc8e200a94d41e807fd9d3e2bb974 | |
parent | 9034bfa3e943870a507f95892015eee754825fa7 [diff] |
Fix out of bound access in libziparchive The boundary check of an invalid EOCD record may succeed due to the overflow of uint32_t. Fix the check. Test: Open the crash.apk and libziparchive reports the offset error as expected. Bug: 31251826 Change-Id: I1d8092a19b73886a671bc9d291cfc27d65e3d236 (cherry picked from commit ae8180c06dee228cd1378c56afa6020ae98d8a24) (cherry picked from commit 1ee4892e66ba314131b7ecf17e98bb1762c4b84c)