[Uim-bugs] [Bug 11411] ParseComposeStringFile() is dubious
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Wed Jul 11 08:26:36 PDT 2007
http://bugs.freedesktop.org/show_bug.cgi?id=11411
------- Comment #5 from ek.kato at gmail.com 2007-07-11 08:26 PST -------
> No, it is really possible to cause a buffer overflow, if the file changes after
> you've determined its filesize because the code assumes no token will be larger
> than the file itself.
Ah. That is possible. Now, current code (r4706) checks the token size itself,
so the problem is fixed I think.
Thanks for the comment. It helps very much.
--
Configure bugmail: http://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the uim-bugs
mailing list