30 Oct
2015
30 Oct
'15
3:08 p.m.
On 10/29/15 16:28, YongHao Hu wrote:
- char temppath[MAX_PATH+1];
- TRACE("(%p %s %p %p)\n", target, debugstr_a(dest), err_code, type);
- if(strlen(dest) >= MAX_PATH) {
*err_code = ERROR_BAD_PATHNAME;return NULL;- }
- strcpy(temppath, dest);
- strcat(temppath, "\*");
There may still write outside of temppath array in this code.
Thanks, Piotr
31 Oct
31 Oct
9:35 a.m.
New subject: [PATCH 01/4] msvcp110: Add tr2_sys__Open_dir implementation.(try 4)
Hi. On 15/10/30 下午11:08, Piotr Caban wrote:
On 10/29/15 16:28, YongHao Hu wrote:
- char temppath[MAX_PATH+1];
- TRACE("(%p %s %p %p)\n", target, debugstr_a(dest), err_code, type);
- if(strlen(dest) >= MAX_PATH) {
*err_code = ERROR_BAD_PATHNAME;return NULL;- }
- strcpy(temppath, dest);
- strcat(temppath, "\*");
There may still write outside of temppath array in this code.
I had sent a new patch to upstream. I think it will fix possible buffer overflow this time. Thank you very much.
3354
Age (days ago)
3355
Last active (days ago)
1 comments
2 participants
participants (2)
-
Piotr Caban -
YongHao Hu