From 24eb5116642f6265449b708ae5f1f8d42afde299 Mon Sep 17 00:00:00 2001
From: Peter Bieringer <pb@bieringer.de>
Date: Fri, 15 Jul 2022 19:47:01 +0200
Subject: [PATCH] fix for https://github.com/zmanda/amanda/issues/167 (#176)

---
 common-src/amutil.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/common-src/amutil.c b/common-src/amutil.c
index 7eecea9409..019faefd76 100644
--- a/common-src/amutil.c
+++ b/common-src/amutil.c
@@ -1132,6 +1132,12 @@ char *hexdecode_string(const char *str, GError **err)
     new_len = orig_len = strlen(str);
     for (i = 0; i < orig_len; i++) {
         if (str[i] == '%') {
+            if (new_len < 2) {
+                g_set_error(err, am_util_error_quark(), AM_UTIL_ERROR_HEXDECODEINVAL,
+                    "Invalid hexcode string: %s", str);
+                s = g_string_sized_new(0);
+                goto cleanup;
+            }
             new_len -= 2;
         }
     }