From b9121fe7602a560c4fee9ab353a7f57a3988ec73 Mon Sep 17 00:00:00 2001
From: usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>
Date: Wed, 28 Mar 2018 10:37:07 +0000
Subject: merge revision(s) 62992:

	pack.c: fix underflow

	* pack.c (pack_unpack_internal): get rid of underflow.
	  https://hackerone.com/reports/298246

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_2_3@62997 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
---
 pack.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'pack.c')

diff --git a/pack.c b/pack.c
index e27eeef6cc..1eceee0af6 100644
--- a/pack.c
+++ b/pack.c
@@ -1235,7 +1235,7 @@ pack_unpack(VALUE str, VALUE fmt)
 	else if (ISDIGIT(*p)) {
 	    errno = 0;
 	    len = STRTOUL(p, (char**)&p, 10);
-	    if (errno) {
+	    if (len < 0 || errno) {
 		rb_raise(rb_eRangeError, "pack length too big");
 	    }
 	}
-- 
cgit v1.2.3