[Bug 28796] New: ntdll: read buffer overrun in lookup_manifest_file

18 Oct 2011


      http://bugs.winehq.org/show_bug.cgi?id=28796
Bug #: 28796
           Summary: ntdll: read buffer overrun in lookup_manifest_file
           Product: Wine
           Version: 1.3.30
          Platform: x86
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: ntdll
        AssignedTo: wine-bugs@winehq.org
        ReportedBy: dank@kegel.com
    Classification: Unclassified
Running "make imagelist.ok" in comctl32, valgrind complains
Use of uninitialised value of size 4
  at tolowerW (unicode.h:123)
  by strcmpiW (string.c:32)
  by lookup_manifest_file (actctx.c:1880)
  by RtlCreateActivationContext (actctx.c:1945)
  by CreateActCtxW (actctx.c:127)
  by CreateActCtxA (actctx.c:105)
  by load_v6_module (v6util.h:126)
  by func_header (header.c:1846)
  by run_test (test.h:556)
  by main (test.h:624)
 Uninitialised value was created by a stack allocation
  at lookup_manifest_file (actctx.c:1822)
The code assumes incorrectly that FileName is nul-terminated.  
Patch sent, 
http://www.winehq.org/pipermail/wine-patches/2011-October/107899.html
but rejected, so filing bug until I have a chance to look at it again.
-- 
Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email
Do not reply to this email, post in Bugzilla using the
above URL to reply.
------- You are receiving this mail because: -------
You are watching all bug changes.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

[Bug 28796] New: ntdll: read buffer overrun in lookup_manifest_file