From c7d68c80002090bddc1eb740d83818aa0a08bbbe Mon Sep 17 00:00:00 2001 From: Junio C Hamano Date: Tue, 27 Feb 2007 23:51:48 -0800 Subject: [PATCH] builtin-fetch--tool: make sure not to overstep ls-remote-result buffer. Signed-off-by: Junio C Hamano --- builtin-fetch--tool.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/builtin-fetch--tool.c b/builtin-fetch--tool.c index 5301c3cb7..eeee0a5eb 100644 --- a/builtin-fetch--tool.c +++ b/builtin-fetch--tool.c @@ -407,6 +407,8 @@ static int expand_refs_wildcard(const char *ls_remote_result, int numrefs, eol = !next ? (ls + strlen(ls)) : next; if (!memcmp("^{}", eol-3, 3)) continue; + if (eol - ls < 40) + continue; if (get_sha1_hex(ls, sha1)) continue; ls += 40; -- 2.30.2