lywsvip/reactos
1
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2026-05-25 17:45:16 +08:00
Code Issues Packages Projects Releases Wiki Activity

[USER32] Don't allow invalid 'IME File' values

Browse Source 
Improve security. CORE-11700
This commit is contained in:
Katayama Hirofumi MZ
2022-09-16 17:59:48 +09:00
parent 787bbf0693
commit b4575eccd7
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
win32ss/user/user32/windows/input.c
View File

@@ -801,7 +801,11 @@ IntLoadKeyboardLayout(
{
WCHAR szPath[MAX_PATH];
GetSystemLibraryPath(szPath, _countof(szPath), szImeFileName);
if (GetFileAttributesW(szPath) == INVALID_FILE_ATTRIBUTES) /* Does not exist? */
/* We don't allow the invalid "IME File" values for security reason */
if (dwType != REG_SZ || szImeFileName[0] == 0 ||
wcsspn(szImeFileName, L":\\/") != wcslen(szImeFileName) ||
GetFileAttributesW(szPath) == INVALID_FILE_ATTRIBUTES) /* Does not exist? */
{
bIsIME = FALSE;
wHigh = 0;