Reject zero offsets in a length/offset pair. The spec at https://github.com/google/snappy/blob/master/format_description.txt says that, "Offsets of zero can be encoded, but are not legal".

commit: 7e6c06b922704573a4691616b49cdf1ceda019ee [log] [tgz]
author: Nigel Tao <nigeltao@golang.org> Sat Feb 13 11:02:00 2016 +1100
committer: Nigel Tao <nigeltao@golang.org> Sat Feb 13 11:02:00 2016 +1100
tree: 58fa6b93bbe6fd9daa1cee3828d53d5122adffd3
parent: 5979233c5d6225d4a8e438cdd0b411888449ddab [diff]
diff --git a/decode.go b/decode.go
index 0ac8e4f..4ca5ee3 100644
--- a/decode.go
+++ b/decode.go

@@ -121,7 +121,7 @@
 			return nil, errUnsupportedCopy4Tag
 		}
 
-		if offset > d || length > len(dst)-d {
+		if offset <= 0 || d < offset || length > len(dst)-d {
 			return nil, ErrCorrupt
 		}
 		for end := d + length; d != end; d++ {

diff --git a/snappy_test.go b/snappy_test.go
index 4d77669..a6fbbf0 100644
--- a/snappy_test.go
+++ b/snappy_test.go

@@ -198,6 +198,11 @@
 		"abcdabcd",
 		nil,
 	}, {
+		`decodedLen=8; tagLiteral (4 bytes "abcd"); tagCopy1; length=4 offset=0; zero offset`,
+		"\x08" + "\x0cabcd" + "\x01\x00",
+		"",
+		ErrCorrupt,
+	}, {
 		`decodedLen=9; tagLiteral (4 bytes "abcd"); tagCopy1; length=4 offset=4; inconsistent dLen`,
 		"\x09" + "\x0cabcd" + "\x01\x04",
 		"",
commit	7e6c06b922704573a4691616b49cdf1ceda019ee	[log] [tgz]
author	Nigel Tao <nigeltao@golang.org>	Sat Feb 13 11:02:00 2016 +1100
committer	Nigel Tao <nigeltao@golang.org>	Sat Feb 13 11:02:00 2016 +1100
tree	58fa6b93bbe6fd9daa1cee3828d53d5122adffd3
parent	5979233c5d6225d4a8e438cdd0b411888449ddab [diff]