aboutsummaryrefslogtreecommitdiffstats
path: root/plugin
diff options
context:
space:
mode:
authorDeepak Bhole <[email protected]>2012-07-24 11:44:50 -0400
committerDeepak Bhole <[email protected]>2012-07-24 11:44:50 -0400
commit5ff3ed50f59b0d05d57aacd73870c6155140f2c8 (patch)
tree5c86b4875cbda6772d87445bcda53fb78fab7722 /plugin
parentdc8c4dd32925423e802772e4259dae4808a83a41 (diff)
CVE-2012-3422, RH840592: Potential read from an uninitialized memory location
Updated NEWS file with entry for CVE-2012-3423
Diffstat (limited to 'plugin')
-rw-r--r--plugin/icedteanp/IcedTeaNPPlugin.cc10
1 files changed, 10 insertions, 0 deletions
diff --git a/plugin/icedteanp/IcedTeaNPPlugin.cc b/plugin/icedteanp/IcedTeaNPPlugin.cc
index eb6d4ec..d8b8948 100644
--- a/plugin/icedteanp/IcedTeaNPPlugin.cc
+++ b/plugin/icedteanp/IcedTeaNPPlugin.cc
@@ -925,6 +925,11 @@ ITNP_URLNotify (NPP instance, const char* url, NPReason reason,
NPError
get_cookie_info(const char* siteAddr, char** cookieString, uint32_t* len)
{
+ // Only attempt to perform this operation if there is a valid plugin instance
+ if (g_hash_table_size(instance_to_id_map) <= 0)
+ {
+ return NPERR_GENERIC_ERROR;
+ }
#if MOZILLA_VERSION_COLLAPSED < 1090100
nsresult rv;
nsCOMPtr<nsIScriptSecurityManager> sec_man =
@@ -1330,6 +1335,11 @@ int get_id_from_instance(NPP instance)
NPError
get_proxy_info(const char* siteAddr, char** proxy, uint32_t* len)
{
+ // Only attempt to perform this operation if there is a valid plugin instance
+ if (g_hash_table_size(instance_to_id_map) <= 0)
+ {
+ return NPERR_GENERIC_ERROR;
+ }
#if MOZILLA_VERSION_COLLAPSED < 1090100
nsresult rv;