Fix zlib buffer overflow vulnerability [ Patch 1234072 ]

git-svn-id: https://svn.wxwidgets.org/svn/wx/wxWidgets/trunk@34824 c3d73ce0-8a6f-49c7-b76d-6d57e0e08775

diff --git a/src/zlib/inftrees.c b/src/zlib/inftrees.c
index 8a896b2879340f56a828657f38fac0f30cebd0f3..509461d92734613b7bbb33f2dbae9a7328dd8ec7 100644 (file)
--- a/src/zlib/inftrees.c
+++ b/src/zlib/inftrees.c
@@ -134,7 +134,7 @@ unsigned short FAR *work;
         left -= count[len];
         if (left < 0) return -1;        /* over-subscribed */
     }
-    if (left > 0 && (type == CODES || (codes - count[0] != 1)))
+    if (left > 0 && (type == CODES || max != 1))
         return -1;                      /* incomplete set */
 
     /* generate offsets into symbol table for each length for sorting */