Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
descriptor: Avoid buffer over-increment in parse_iad_array function
The first iteration of this loop was safe because the beginning of the function checked that `size` is at least LIBUSB_DT_CONFIG_SIZE (9) bytes long. But for subsequent iterations, it could advance the pointer too far (which is undefined behaviour) depending on the content of the buffer itself. Closes #1460
- Loading branch information