There was an error while loading. Please reload this page.
1 parent dd86593 commit a9010e6Copy full SHA for a9010e6
io.go
@@ -90,9 +90,15 @@ func (e *streamReader) otherByteOrder() binary.ByteOrder {
90
return binary.BigEndian
91
}
92
93
+// 10 MB should be plenty for image metadata.
94
+const maxBufSize = 10 * 1024 * 1024
95
+
96
// bufferedReader reads length bytes from the stream and returns a ReaderCloser.
97
// It's important to call Close on the ReaderCloser when done.
98
func (e *streamReader) bufferedReader(length int64) (readerCloser, error) {
99
+ if length > maxBufSize {
100
+ return nil, newInvalidFormatErrorf("length %d exceeds max %d", length, maxBufSize)
101
+ }
102
if length == 0 {
103
return struct {
104
io.ReadSeeker
0 commit comments