iarv/znc
1
0
Fork 0
mirror of https://github.com/znc/znc.git synced 2026-05-18 07:15:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix some more unsafe substr() calls

Browse Source 
All of these require at least a valid login to znc to cause a std::out_of_range
exceptions, some might not even be exploitable!


git-svn-id: https://znc.svn.sourceforge.net/svnroot/znc/trunk@2095 726aef4b-f618-498e-8847-2d620e286838
This commit is contained in:
psychon
2010-08-03 10:49:03 +00:00
parent c91d032e6b
commit d0e3572afe
4 changed files with 6 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files
IRCSock.cpp
+1 -1
View File
@@ -88,7 +88,7 @@ void CIRCSock::ReadLine(const CString& sData) {
return;
} else if (sLine.Equals("ERROR ", false, 6)) {
//ERROR :Closing Link: nick[24.24.24.24] (Excess Flood)
CString sError(sLine.substr(7));
CString sError(sLine.substr(6));
if (sError.Left(1) == ":") {
sError.LeftChomp();