Fix heap-buffer-overflow in proj_hgrid_init.

Resolves https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3940 Credit to OSS-Fuzz.
author: Kristian Evers <kristianevers@gmail.com> 2017-10-31 13:05:15 +0100
committer: Kristian Evers <kristianevers@gmail.com> 2017-10-31 13:05:15 +0100
commit: 0d1eeb16dd0a574d81ba0eaeea430f1be105a038 (patch)
tree: 7d4a20789f4bdc25260cefb9a05b4591c232d7a7 /src/pj_apply_gridshift.c
parent: 9222694f522afb0dd96a50a8263dad62efa5d54e (diff)
download: PROJ-0d1eeb16dd0a574d81ba0eaeea430f1be105a038.tar.gz
PROJ-0d1eeb16dd0a574d81ba0eaeea430f1be105a038.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/pj_apply_gridshift.c b/src/pj_apply_gridshift.c
index 45887abd..7d9ac94b 100644
--- a/src/pj_apply_gridshift.c
+++ b/src/pj_apply_gridshift.c
@@ -273,7 +273,7 @@ int proj_hgrid_init(PJ* P, const char *grids) {
 ***********************************************/
 
     /* prepend "s" to the "grids" string to allow usage with pj_param */
-    char *sgrids = (char *) pj_malloc( (strlen(grids)+1) *sizeof(char) );
+    char *sgrids = (char *) pj_malloc( (strlen(grids)+1+1) *sizeof(char) );
     sprintf(sgrids, "%s%s", "s", grids);
 
     if (P->gridlist == NULL) {
author	Kristian Evers <kristianevers@gmail.com>	2017-10-31 13:05:15 +0100
committer	Kristian Evers <kristianevers@gmail.com>	2017-10-31 13:05:15 +0100
commit	0d1eeb16dd0a574d81ba0eaeea430f1be105a038 (patch)
tree	7d4a20789f4bdc25260cefb9a05b4591c232d7a7 /src/pj_apply_gridshift.c
parent	9222694f522afb0dd96a50a8263dad62efa5d54e (diff)
download	PROJ-0d1eeb16dd0a574d81ba0eaeea430f1be105a038.tar.gz PROJ-0d1eeb16dd0a574d81ba0eaeea430f1be105a038.zip