Check that the size argument to alloc calls is non-zero and not greater
than an arbitrary limit appropriate to the type.
This is a continuation of Yeraze#57 and Yeraze#62 and protects against the class of
bug reported in Yeraze#42 (CVE-2017-9473) and Yeraze#51 (CVE-2017-12144).
On Yerase TNEF Printer v1.9.2, a allocation failed was found in the function TNEFFillMapi (ytnef.c:482 ).
testcase : https://github.com/bestshow/p0cs/blob/master/allocation-failed-in_TNEFFillMapi
Credit : ADLab of Venustech
The text was updated successfully, but these errors were encountered: