From d887c1b5b30733fd2d6cf07a4a264f57ab9f4b4b Mon Sep 17 00:00:00 2001
From: Sebastian Huber <sebastian.huber@embedded-brains.de>
Date: Wed, 25 May 2016 14:28:34 +0200
Subject: posix: Fix sem_init() with too large initial value

Close #2721.
---
 cpukit/posix/src/seminit.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'cpukit/posix')

diff --git a/cpukit/posix/src/seminit.c b/cpukit/posix/src/seminit.c
index cc47312172..249edf67ee 100644
--- a/cpukit/posix/src/seminit.c
+++ b/cpukit/posix/src/seminit.c
@@ -43,8 +43,13 @@ int sem_init(
   int                        status;
   POSIX_Semaphore_Control   *the_semaphore;
 
-  if ( !sem )
+  if ( sem == NULL ) {
     rtems_set_errno_and_return_minus_one( EINVAL );
+  }
+
+  if ( value > SEM_VALUE_MAX ) {
+    rtems_set_errno_and_return_minus_one( EINVAL );
+  }
 
   _Objects_Allocator_lock();
   status = _POSIX_Semaphore_Create_support(
-- 
cgit v1.2.3