[PATCH] Fix potential heap corruption in "gpg -v --version"
Dmitry V. Levin
ldv at altlinux.org
Thu Dec 13 21:01:14 CET 2012
On Tue, Oct 30, 2012 at 11:08:13AM +0100, Werner Koch wrote:
> On Sat, 27 Oct 2012 22:07, ldv at altlinux.org said:
>
> > In multibyte locales translated strings are usually longer (in bytes) than
> > in C locale. The 1st argument of build_list() is a translated string.
>
> Okay, that is the keyword which makes it clear.
>
> > Besides that, build_list() does other funny things with memory allocation
> > and string operations, e.g. its only purpose of doing "xmalloc( 21 + n )"
> > is confusing an observer because it doesn't need these extra 21 bytes,
>
> I'll look at this too.
Is there any progress with the fix?
--
ldv
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: not available
URL: </pipermail/attachments/20121214/d88872c9/attachment.pgp>
More information about the Gnupg-devel
mailing list