From 2ae6252ce62b018d2f46cd7fa8fb5d7628fd6de8 Mon Sep 17 00:00:00 2001
From: Steve Bennett <steveb@workware.net.au>
Date: Sat, 8 Apr 2017 12:27:33 +1000
Subject: jimsh: Fix crash with "throw 8"

Off by one for length of the return code name array.
Found with afl-fuzz.

Signed-off-by: Steve Bennett <steveb@workware.net.au>
---
 jim.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/jim.c b/jim.c
index 6e34d48..691f635 100644
--- a/jim.c
+++ b/jim.c
@@ -7513,7 +7513,7 @@ static const char * const jimReturnCodes[] = {
     NULL
 };
 
-#define jimReturnCodesSize (sizeof(jimReturnCodes)/sizeof(*jimReturnCodes))
+#define jimReturnCodesSize (sizeof(jimReturnCodes)/sizeof(*jimReturnCodes) - 1)
 
 static const Jim_ObjType returnCodeObjType = {
     "return-code",
-- 
cgit v1.1