wind: Check for integer overflow in idn-lookup utility

2022-12-30 16:38:13 -06:00
parent 0ffb00275a
commit a331a7a04f
1 changed files with 2 additions and 2 deletions
--- a/lib/wind/idn-lookup.c
+++ b/lib/wind/idn-lookup.c
@@ -69,9 +69,9 @@ lookup(const char *name)
    struct addrinfo *ai;

    size_t u_len = strlen(name);
-    uint32_t *u = malloc(u_len * sizeof(uint32_t));
+    uint32_t *u = calloc(u_len, sizeof(uint32_t));
    size_t norm_len = u_len * 2;
-    uint32_t *norm = malloc(norm_len * sizeof(uint32_t));
+    uint32_t *norm = calloc(norm_len, sizeof(uint32_t));

    if (u == NULL && u_len != 0)
 	errx(1, "malloc failed");