fix: add overflow check for calloc operation in clip_log_internal_v

devin-ai-integration[bot] · jakexcosme · devin-ai-integration[bot] · commit 8f03ebe930a6 · 2025-10-21T19:17:18.000Z
Co-Authored-By: Jake Cosme &lt;jake@cognition.ai&gt;
diff --git a/tools/mtmd/clip-impl.h b/tools/mtmd/clip-impl.h
@@ -218,7 +218,13 @@ static void clip_log_internal_v(enum ggml_log_level level, const char * format,
     if (len < 128) {
         g_logger_state.log_callback(level, buffer, g_logger_state.log_callback_user_data);
     } else {
+        if (len < 0 || len >= INT_MAX) {
+            return; // Invalid length from vsnprintf
+        }
         char * buffer2 = (char *) calloc(len + 1, sizeof(char));
+        if (!buffer2) {
+            return; // Allocation failed
+        }
         vsnprintf(buffer2, len + 1, format, args_copy);
         buffer2[len] = 0;
         g_logger_state.log_callback(level, buffer2, g_logger_state.log_callback_user_data);
