Commit db9480b0 authored by Olaf Meeuwissen's avatar Olaf Meeuwissen

epsonds: Read only up to seven hexdigits to determine payload size

Addresses GHSL-2020-083, re #279.
parent e52a5bf7
......@@ -117,7 +117,7 @@ esci2_check_header(const char *cmd, const char *buf, unsigned int *more)
return 0;
}
err = sscanf(&buf[5], "%x#", more);
err = sscanf(&buf[5], "%7x#", more);
if (err != 1) {
DBG(1, "cannot decode length from header\n");
return 0;
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment