Prevent overflow beyond the end of string in wtf_strwidth()

Bug-Debian: https://github.com/tats/w3m/issues/57
2016-12-07 20:41:29 +09:00
parent 900553de6d
commit d345c0950d
1 changed files with 5 additions and 1 deletions
--- a/libwc/wtf.c
+++ b/libwc/wtf.c
@@ -120,10 +120,14 @@ int
 wtf_strwidth(wc_uchar *p)
 {
    int w = 0;
+    size_t len;

    while (*p) {
 	w += wtf_width(p);
-	p += WTF_LEN_MAP[*p];
+	len = WTF_LEN_MAP[*p];
+	if (len > strlen(p))
+	    len = strlen(p);
+	p += len;
    }
    return w;
 }