Opened 10 years ago

Closed 10 years ago

#61 closed defect (fixed)

Buffer overflow in file_info_2

Reported by: Jim Ursetto Owned by:
Priority: major Milestone:
Component: core libraries Version: 4.1.x
Keywords: Cc:
Estimated difficulty:

Description

#;> (file-exists? (list->string (map (lambda (x) #\a) (iota 4135))))
Segmentation fault (core dumped)

Patch attached. Also fixes a couple other overflows in Win32 code and adds a safety check for fmode size (which should never overflow, but...)

Attachments (1)

file_info_overflow.diff.txt (1.9 KB) - added by Jim Ursetto 10 years ago.

Download all attachments as: .zip

Change History (2)

Changed 10 years ago by Jim Ursetto

Attachment: file_info_overflow.diff.txt added

comment:1 Changed 10 years ago by felix winkelmann

Resolution: fixed
Status: newclosed

Patch applied in r15292. Danke.

Note: See TracTickets for help on using tickets.