mirrors/reactos
0
0
Fork 0
mirror of https://github.com/reactos/reactos.git synced 2024-11-23 11:33:31 +08:00
Code Issues Packages Projects Releases Wiki Activity

[USER32] Don't allow invalid 'IME File' values

Browse Source 
Improve security. CORE-11700
This commit is contained in:
Katayama Hirofumi MZ 2022-09-16 17:59:48 +09:00
parent 787bbf0693
commit b4575eccd7
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
win32ss/user/user32/windows/input.c
View File

@ -801,7 +801,11 @@ IntLoadKeyboardLayout(
{ {
WCHAR szPath[MAX_PATH]; WCHAR szPath[MAX_PATH];
GetSystemLibraryPath(szPath, _countof(szPath), szImeFileName); GetSystemLibraryPath(szPath, _countof(szPath), szImeFileName);
if (GetFileAttributesW(szPath) == INVALID_FILE_ATTRIBUTES) /* Does not exist? */
/* We don't allow the invalid "IME File" values for security reason */
if (dwType != REG_SZ || szImeFileName[0] == 0 ||
wcsspn(szImeFileName, L":\\/") != wcslen(szImeFileName) ||
GetFileAttributesW(szPath) == INVALID_FILE_ATTRIBUTES) /* Does not exist? */
{ {
bIsIME = FALSE; bIsIME = FALSE;
wHigh = 0; wHigh = 0;