From 2508f1e16ec2afe7030b5e9ed7ca15c1f2fc50fb Mon Sep 17 00:00:00 2001
From: Doczom <Doczom@kolibrios.org>
Date: Sun, 9 May 2021 12:50:44 +0000
Subject: [PATCH] fixed vulnerability (reading kernel memory from userspace) in
 sysfn 48.2

git-svn-id: svn://kolibrios.org@8712 a494cfbc-eb01-0410-851d-a64ba20cac60
---
 kernel/trunk/gui/window.inc | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/kernel/trunk/gui/window.inc b/kernel/trunk/gui/window.inc
index d6312fb9bd..53e922070f 100644
--- a/kernel/trunk/gui/window.inc
+++ b/kernel/trunk/gui/window.inc
@@ -128,6 +128,10 @@ dd  .setSkinUnicode
         cmp     edx, 192
         jnae    @f
         mov     edx, 192 ; max size
+@@:
+        stdcall is_region_userspace, esi, edx    ;
+        jnz     @f                               ;
+        ret                                      ;
 @@:
         mov     edi, common_colours
         mov     ecx, edx