fixed vulnerability (reading kernel memory from userspace) in sysfn 48.2

git-svn-id: svn://kolibrios.org@8712 a494cfbc-eb01-0410-851d-a64ba20cac60
2021-05-09 12:50:44 +00:00 · 2021-05-09 12:50:44 +00:00 · 2508f1e16e
commit 2508f1e16e
parent a18d802064
1 changed files with 4 additions and 0 deletions
--- a/kernel/trunk/gui/window.inc
+++ b/kernel/trunk/gui/window.inc
@ -128,6 +128,10 @@ dd  .setSkinUnicode
        cmp     edx, 192
        jnae    @f
        mov     edx, 192 ; max size
+@@:
+        stdcall is_region_userspace, esi, edx    ;
+        jnz     @f                               ;
+        ret                                      ;
@@:
        mov     edi, common_colours
        mov     ecx, edx