From c88883e028a5182d0e0e8c668f2d672a9cc7e367 Mon Sep 17 00:00:00 2001
From: Arne Goedeke <el@laramies.com>
Date: Sat, 15 Mar 2014 21:56:41 +0100
Subject: [PATCH] decode_value: check validity of refno

---
 src/encode.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/encode.c b/src/encode.c
index 06ff1acf10..f1ba1dfca8 100644
--- a/src/encode.c
+++ b/src/encode.c
@@ -4615,8 +4615,11 @@ static void decode_value2(struct decode_data *data)
 		/* refno */
 		decode_number(refno, data);
 
+                if (refno < 0 || refno >= p->num_identifier_references)
+                    decode_error(data, NULL, "Bad identifier reference %d\n", refno);
+
 		/* FIXME:
-		 *   Verify validity of depth and refno.
+		 *   Verify validity of depth.
 		 */
 
 		/* Expected identifier number. */
-- 
GitLab