From 388de730ac96bb3b71c018fd573cbbd15c7ffd7c Mon Sep 17 00:00:00 2001
From: "Todd C. Miller" <millert@cvs.openbsd.org>
Date: Sat, 1 Aug 2015 18:11:09 +0000
Subject: Fix a potential out-of-bounds read found via address-sanitizer while
 fuzzing as reported by Elliott Hughes.  OK doug@ stsp@

---
 lib/libc/gen/fnmatch.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'lib/libc/gen')

diff --git a/lib/libc/gen/fnmatch.c b/lib/libc/gen/fnmatch.c
index e83dc43c282..0d0f18ff434 100644
--- a/lib/libc/gen/fnmatch.c
+++ b/lib/libc/gen/fnmatch.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: fnmatch.c,v 1.18 2014/12/11 16:25:34 millert Exp $	*/
+/*	$OpenBSD: fnmatch.c,v 1.19 2015/08/01 18:11:08 millert Exp $	*/
 
 /* Copyright (c) 2011, VMware, Inc.
  * All rights reserved.
@@ -192,6 +192,8 @@ static int fnmatch_ch(const char **pattern, const char **string, int flags)
                 result = 0;
                 continue;
             }
+            if (!**pattern)
+                break;
 
 leadingclosebrace:
             /* Look at only well-formed range patterns; 
-- 
cgit v1.2.3