From 37b8d928726a0320485cb785516047f02fb4ca78 Mon Sep 17 00:00:00 2001 From: "Pierre R. Mai" Date: Mon, 22 May 2023 09:18:13 +0200 Subject: [PATCH] Ensure sliding window buffer is 0 initialized Avoids data leakage for invalid backreference to non-written output in deflate streams. --- deflate.lisp | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/deflate.lisp b/deflate.lisp index b222eab..6561ff1 100644 --- a/deflate.lisp +++ b/deflate.lisp @@ -197,7 +197,7 @@ (defstruct sliding-window-stream (stream nil :type stream :read-only t) - (buffer (make-array +sliding-window-size+ :element-type '(unsigned-byte 8)) + (buffer (make-array +sliding-window-size+ :element-type '(unsigned-byte 8) :initial-element 0) :type (simple-array (unsigned-byte 8) (#.+sliding-window-size+)) :read-only t) (buffer-end 0 :type fixnum) (checksum nil :type symbol :read-only t)