Message170200
In Python/sysmodule.c the function sys_update_path() uses wcscpy to copy data to a fixed size buffer. The input comes from an external source (argv[0]) and could theoretically be larger than the buffer.
Suggested solution:
Increase the buffer a bit:
wchar_t argv0copy[sizeof(wchar_t)* (MAXPATHLEN+1)];
and use wcsncpy:
wcsncpy(argv0copy, argv0, MAXPATHLEN);
argv0copy[MAXPATHLEN] = L'\0';
CID 486850 |
|
Date |
User |
Action |
Args |
2012-09-10 16:09:46 | christian.heimes | set | recipients:
+ christian.heimes |
2012-09-10 16:09:46 | christian.heimes | set | messageid: <1347293386.49.0.00561600810364.issue15905@psf.upfronthosting.co.za> |
2012-09-10 16:09:46 | christian.heimes | link | issue15905 messages |
2012-09-10 16:09:45 | christian.heimes | create | |
|