Re: cmd: fix buffer overflow in WCMD_run_program

4 Mar 2010


      On Thu, Mar 4, 2010 at 11:20 AM, Eric Ho ericho921@gmail.com wrote:
...
Hi Guys,
 I'm a UCLA student working with Dan Kegel on cmd.
 This attached patch adds tests for the following buffer overflows, and
passes on winetestbot.  Fixes http://bugs.winehq.org/show_bug.cgi?id=21344.
Overflows fixed:

overflow due to long path name (unchecked memcpy,strcpy to thisDir)
overflow due to long file name (unchecked strcpy into stemofsearch)
overflow due to concatenating thisDir into stemofsearch (strcat)
added early breaks when getFullPathName returns an error
fixed incorrect errorlevel code (needs to be 9023 and it was 9009)

Howdy Eric,
Patches should be sent to wine-patches@winehq.org. wine-devel is for
questions/discussion, or for feedback on patches.
-- 
-Austin

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

Re: cmd: fix buffer overflow in WCMD_run_program