Open MarekKnapek opened 5 months ago
Create file with length of 4 bytes: 0xff, 0xff, 0x00, 0x00 and try to decompress it. Result is stack buffer overflow accessing variable dict_elem_size, it uses index 3 and index 3. But the array has size only of [4][3] elements.
dict_elem_size
3
[4][3]
Added precheck and crosscheck to decompression, this issue should be resolved.
Create file with length of 4 bytes: 0xff, 0xff, 0x00, 0x00 and try to decompress it. Result is stack buffer overflow accessing variable
dict_elem_size
, it uses index3
and index3
. But the array has size only of[4][3]
elements.