From: Marcus Meissner Date: Wed, 3 Jan 2018 14:43:41 +0100 Subject: Out-of-bounds read in htmlParseTryOrFinish Origin: vendor, https://bugzilla.novell.com/attachment.cgi?id=732309 Bug: https://bugzilla.gnome.org/show_bug.cgi?id=775200 Bug-Debian: https://bugs.debian.org/862450 Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2017-8872 Bug-SUSE: https://bugzilla.novell.com/show_bug.cgi?id=1038444 Forwarded: yes, https://bugzilla.gnome.org/attachment.cgi?id=366193 Reviewed-by: Salvatore Bonaccorso Last-Update: 2018-01-03 --- parser.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/parser.c b/parser.c index 1c5e036..0251110 100644 --- a/parser.c +++ b/parser.c @@ -12467,6 +12467,10 @@ xmlHaltParser(xmlParserCtxtPtr ctxt) { ctxt->input->cur = BAD_CAST""; ctxt->input->base = ctxt->input->cur; ctxt->input->end = ctxt->input->cur; + if (ctxt->input->buf) + xmlBufEmpty (ctxt->input->buf->buffer); + else + ctxt->input->length = 0; } }