[PATCH] Fix potential heap corruption in "gpg -v --version"

Dmitry V. Levin ldv at altlinux.org
Thu Dec 13 21:01:14 CET 2012

On Tue, Oct 30, 2012 at 11:08:13AM +0100, Werner Koch wrote:
> On Sat, 27 Oct 2012 22:07, ldv at altlinux.org said:
> > In multibyte locales translated strings are usually longer (in bytes) than
> > in C locale.  The 1st argument of build_list() is a translated string.
> Okay, that is the keyword which makes it clear.
> > Besides that, build_list() does other funny things with memory allocation
> > and string operations, e.g. its only purpose of doing "xmalloc( 21 + n )"
> > is confusing an observer because it doesn't need these extra 21 bytes,
> I'll look at this too.

Is there any progress with the fix?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: </pipermail/attachments/20121214/d88872c9/attachment.pgp>

More information about the Gnupg-devel mailing list