[PATCH v2 0/1] MR8205: comctl32: Make sure line_widths is big enough. - Wine-gitlab - list.winehq.org

newer
[PATCH v2 0/2] MR7024: Disable...

[PATCH v2 0/1] MR8205: comctl32: Make sure line_widths is big enough.

older
[PATCH 0/5] MR8222: widl: Add rows...

Yuxuan Shui (＠yshui)

4 Jun 2025 4 Jun '25

4:04 p.m.

When button_count is 0, we would allocate 0 bytes for line_widths, but later line_count would be 1 so we would still try to access line_widths[0] which is out-of-bound. -- v2: comctl32: Make sure line_widths is big enough. https://gitlab.winehq.org/wine/wine/-/merge_requests/8205

Reply

Sign in to reply online Use email software

Show replies by date

Yuxuan Shui

4 Jun 4 Jun

4:04 p.m.

New subject: [PATCH v2 1/1] comctl32: Make sure line_widths is big enough.

From: Yuxuan Shui <yshui(a)codeweavers.com> When button_count is 0, we would allocate 0 bytes for line_widths, but later line_count would be 1 so we would still try to access line_widths[0] which is out-of-bound. --- dlls/comctl32/taskdialog.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dlls/comctl32/taskdialog.c b/dlls/comctl32/taskdialog.c index 2f8f6de5a4e..c6815cff9ac 100644 --- a/dlls/comctl32/taskdialog.c +++ b/dlls/comctl32/taskdialog.c @@ -965,7 +965,7 @@ static void taskdialog_layout(struct taskdialog_info *dialog_info) /* Common and custom buttons */ button_layout_infos = Alloc(dialog_info->button_count * sizeof(*button_layout_infos)); - line_widths = Alloc(dialog_info->button_count * sizeof(*line_widths)); + line_widths = Alloc(max(dialog_info->button_count, 1) * sizeof(*line_widths)); button_min_width = DIALOG_BUTTON_WIDTH; button_height = DIALOG_BUTTON_HEIGHT; -- GitLab https://gitlab.winehq.org/wine/wine/-/merge_requests/8205

Reply

Sign in to reply online Use email software

Nikolay Sivov (＠nsivov)

5:24 p.m.

I think it makes sense, but it would be best if @zhiyi confirmed it. -- https://gitlab.winehq.org/wine/wine/-/merge_requests/8205#note_105372

Reply

Sign in to reply online Use email software

Zhiyi Zhang (＠zhiyi)

6 Jun 6 Jun

10:03 a.m.

Hi, I submitted https://gitlab.winehq.org/wine/wine/-/merge_requests/8223, which should also fix the illegal memory access. -- https://gitlab.winehq.org/wine/wine/-/merge_requests/8205#note_105626

Reply

Sign in to reply online Use email software

Yuxuan Shui (＠yshui)

10:41 a.m.

On Fri Jun 6 10:41:34 2025 +0000, Zhiyi Zhang wrote:

Hi, I submitted https://gitlab.winehq.org/wine/wine/-/merge_requests/8223, which should also fix the illegal memory access. cool! i wasn't sure if the 0 buttons behavior is intentional or not, so i fixed it this way. guess it is not!

-- https://gitlab.winehq.org/wine/wine/-/merge_requests/8205#note_105631

Reply

Sign in to reply online Use email software

Yuxuan Shui (＠yshui)

10:41 a.m.

superseded by !8223 -- https://gitlab.winehq.org/wine/wine/-/merge_requests/8205#note_105632

Reply

Sign in to reply online Use email software

Yuxuan Shui (＠yshui)

10:41 a.m.

New subject: [PATCH v2 0/1] MR8205: comctl32: Make sure line_widths is big enough. - closed

This merge request was closed by Yuxuan Shui. -- https://gitlab.winehq.org/wine/wine/-/merge_requests/8205

Reply

Sign in to reply online Use email software

272

Age (days ago)

274

Last active (days ago)

Download

6 comments

4 participants

tags

participants (4)

Nikolay Sivov (＠nsivov)
Yuxuan Shui
Yuxuan Shui (＠yshui)
Zhiyi Zhang (＠zhiyi)