From 0481fbf7ce5b9a505577e2fbf8570c6c0abc2f86 Mon Sep 17 00:00:00 2001
From: Michael Meeks <michael.meeks@suse.com>
Date: Tue, 31 Jan 2012 10:36:54 +0000
Subject: [PATCH] broadway: terminate v7 input to avoid parsing uninit memory.

---
 gdk/broadway/gdkdisplay-broadway.c | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/gdk/broadway/gdkdisplay-broadway.c b/gdk/broadway/gdkdisplay-broadway.c
index 861560ef48..9e2e7a6e7f 100644
--- a/gdk/broadway/gdkdisplay-broadway.c
+++ b/gdk/broadway/gdkdisplay-broadway.c
@@ -422,7 +422,11 @@ parse_input (BroadwayInput *input)
 #endif
 	      }
 	    else
-	      parse_input_message (input, (char *)data);
+	      {
+		char *terminated = g_strndup((char *)data, payload_len);
+	        parse_input_message (input, terminated);
+		g_free (terminated);
+	      }
 	    break;
 	  case BROADWAY_WS_CNX_PING:
 	    broadway_output_pong (broadway_display->output);
@@ -1012,7 +1016,7 @@ got_http_request_line (GInputStream *stream,
       /* Protect against overflow in request length */
       if (request->request->len > 1024 * 5)
 	{
-	  send_error (request, 400, "Request to long");
+	  send_error (request, 400, "Request too long");
 	}
       else
 	{
-- 
2.30.2