Merge pull request #560 from ferivoz/copy

[CVE-2022-25314] lib: Prevent integer overflow in copyString
libexpat · Feb 18, 2022 · d477fdd · d477fdd
2 parents 8921494 + efcb347
commit d477fdd
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/expat/lib/xmlparse.c b/expat/lib/xmlparse.c
@@ -7459,7 +7459,7 @@ getElementType(XML_Parser parser, const ENCODING *enc, const char *ptr,
 
 static XML_Char *
 copyString(const XML_Char *s, const XML_Memory_Handling_Suite *memsuite) {
-  int charsRequired = 0;
+  size_t charsRequired = 0;
   XML_Char *result;
 
   /* First determine how long the string is */