Prevent misaddressing in SanitizeMsg()

An invalid access occurs for a message consisting only of a single zero byte.
n2yen · Jun 8, 2015 · c298a7e · c298a7e
1 parent f7a6bf7
commit c298a7e
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/runtime/parser.c b/runtime/parser.c
@@ -422,7 +422,8 @@ SanitizeMsg(msg_t *pMsg)
 	 * compatible to recent IETF developments, we allow the user to
 	 * turn on/off this handling.  rgerhards, 2007-07-23
 	 */
-	if(glbl.GetParserDropTrailingLFOnReception() && pszMsg[lenMsg-1] == '\n') {
+	if(glbl.GetParserDropTrailingLFOnReception()
+	   && lenMsg > 0 && pszMsg[lenMsg-1] == '\n') {
 		DBGPRINTF("dropped LF at very end of message (DropTrailingLF is set)\n");
 		lenMsg--;
 		pszMsg[lenMsg] = '\0';