Etykiety Kamienie milowe

Nowe zgłoszenie

kcpuproc.cpp - prevent overflow #2

Zamknięty

opened 6 lat temu by Ghost · 2 komentarzy

Ghost skomentował(-a) 6 lat temu

I've run cppcheck on kcpuload, here is the error:

[kcpuproc.cpp:176]: (error) Width 32 given in format string (no. 1) is larger than destination buffer 'tagbuffer[32]', use %31s to prevent overflowing it.

Instead, I'd like to enlarge the 'tagbuffer' array by 1, but I have no ideas why the guy has set the string to 32 characters.

What do think about?

I've run cppcheck on kcpuload, here is the error: [kcpuproc.cpp:176]: (error) Width 32 given in format string (no. 1) is larger than destination buffer 'tagbuffer[32]', use %31s to prevent overflowing it. Instead, I'd like to enlarge the 'tagbuffer' array by 1, but I have no ideas why the guy has set the string to 32 characters. What do think about?

MicheleC skomentował(-a) 6 lat temu

Właściciel

Hi Greg,

yes, increasing the tagbugger to 33 bytes is the correct solution.

Changing the sequence of reading in the fscanf may lead to unexpected results, with bytes after 32 being shifted by one. Extending tagbuffer to allow for the extra null terminator will preserve functionality and avoid mistakes.

Good work!

Hi Greg, yes, increasing the tagbugger to 33 bytes is the correct solution. Changing the sequence of reading in the fscanf may lead to unexpected results, with bytes after 32 being shifted by one. Extending tagbuffer to allow for the extra null terminator will preserve functionality and avoid mistakes. Good work!

SlavekB dodaje to do kamienia milowego R14.0.6 release 6 lat temu

SlavekB skomentował(-a) 6 lat temu

Właściciel

Fixed by PR #4, commit e816bb8048.

Fixed by PR #4, commit e816bb8048.

SlavekB zamknął(-ęła) to zgłoszenie 6 lat temu

Zaloguj się, aby dołączyć do tej rozmowy.

Nie określono gałęzi/etykiety

Gałęzie Tagi

master

r14.1.x

r14.0.x

v3.5.13-sru

r14.1.2

r14.1.1

r14.1.0

r14.0.13

r14.0.12

r14.0.11

r14.0.10

r14.0.9

r14.0.8

r14.0.7

r14.0.6

r14.0.5

r14.0.4

r14.0.3

r14.0.2

r14.0.1

r14.0.0

v3.5.13.2

v3.5.13.1

v3.5.13

Etykiety

Zastosuj etykiety

Wyczyść etykiety

GE/need-info
General - need additional info from contributor PR/keep-branch
Pull request - do not delete branch after merging PR/not-ok
Pull request - need fixing PR/rfc
Pull request - request for comments PR/update-trans
Pull request - update to translation files needed PR/wip
Pull request - work in progress RS/R14.0.x
Related to R14.0.x series RS/R14.1.x
Related to R14.1.x series SL/critical
Severity level - critical SL/major
Severity level - major SL/minor
Severity level - minor SL/normal
Severity level - normal SL/regression
Severity level - regression from previous version SL/trivial
Severity level - trivial SL/wishlist
Severity level - wishlist request ST/duplicate
Status - duplicate of another issue ST/invalid
Status - invalid report ST/notourproblem
Status - not our problem ST/rejected
Status - rejected ST/wontfix
Status - won't fix ST/worksforme
Status - works for me, unable to reproduce

Brak etykiety GE/need-info PR/keep-branch PR/not-ok PR/rfc PR/update-trans PR/wip RS/R14.0.x RS/R14.1.x SL/critical SL/major SL/minor SL/normal SL/regression SL/trivial SL/wishlist ST/duplicate ST/invalid ST/notourproblem ST/rejected ST/wontfix ST/worksforme

Kamień milowy

Ustaw kamień milowy

Wyczyść kamień milowy

Brak elementów

Brak kamienia milowego

R14.0.6 release

Przypisani

Przypisz użytkowników

Usuń przypisanych

Brak przypisanych

Uczestnicy 3

Powiadomienia

Subskrybuj

Termin realizacji

Data realizacji jest niewłaściwa lub spoza zakresu. Użyj formatu 'yyyy-mm-dd'.

Brak ustawionego terminu realizacji.

Zależności

No dependencies set.

Reference: TDE/kcpuload#2

Napisz Podgląd

Ładowanie…

Anuluj

Zapisz

Nie ma jeszcze treści.