From 0717375d0a8f3d546f4610dc3de9aa963beedf9a Mon Sep 17 00:00:00 2001
From: Steve Pinkham <steve.pinkham@gmail.com>
Date: Mon, 10 Jan 2011 14:17:42 -0500
Subject: [PATCH] 1.82b: NULL pointer in is_javascript() fixed.

---
 ChangeLog  | 5 +++++
 Makefile   | 2 +-
 analysis.c | 5 ++++-
 crawler.c  | 2 +-
 4 files changed, 11 insertions(+), 3 deletions(-)

diff --git a/ChangeLog b/ChangeLog
index a54f83c..cc85c51 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+Version 1.82b:
+--------------
+
+  - NULL pointer in is_javascript() fixed.
+
 Version 1.81b:
 --------------
 
diff --git a/Makefile b/Makefile
index ac63ee1..da735b9 100644
--- a/Makefile
+++ b/Makefile
@@ -20,7 +20,7 @@
 #
 
 PROGNAME   = skipfish
-VERSION    = 1.81b
+VERSION    = 1.82b
 
 OBJFILES   = http_client.c database.c crawler.c analysis.c report.c
 INCFILES   = alloc-inl.h string-inl.h debug.h types.h http_client.h \
diff --git a/analysis.c b/analysis.c
index df27e34..5bb6d82 100644
--- a/analysis.c
+++ b/analysis.c
@@ -1176,7 +1176,10 @@ static u8 is_javascript(struct http_response* res) {
         end = text + strcspn((char*)text, "\r\n");
       } else if (text[1] == '*') {
         end = (u8*)strstr((char*)text + 2, "*/");
-        if (end) end += 2;
+        if (end) end += 2; else {
+          res->js_type = 1;
+          return 0;
+        }
       } else {
         res->js_type = 1;
         return 0;
diff --git a/crawler.c b/crawler.c
index 98b0b48..c3f69e4 100644
--- a/crawler.c
+++ b/crawler.c
@@ -1184,7 +1184,7 @@ static u8 inject_check7_callback(struct http_request* req,
        misc[7] = 9 1 - (or orig 0 0 - -)
 
      If misc[0] == misc[1], but misc[0] != misc[2], probable (numeric) SQL
-     injection. Ditto for misc[2] == misc[6], but misc[6] != misc[7]. 
+     injection. Ditto for misc[1] == misc[6], but misc[6] != misc[7]. 
 
      If misc[3] != misc[4] and misc[3] != misc[5], probable text SQL 
      injection.