Author gregory.p.smith
Recipients gregory.p.smith, jnferguson
Date 2008-05-26.21:17:29
SpamBayes Score 0.0574908
Marked as misclassified No
Message-id <>
Fixed in trunk r63728.

There was a problem with the code on normal architectures as well.

The input was a size_t while the output was an int.  So an integer
overflow could have happened going from the vsnprintf return value to
the integer since size_t is unsigned and int isn't (also when size_t is
a larger type than an int).

I don't think that would lead to memory corruption when using the
system's vsnprintf but it could have bad results if the caller expected
str to be null terminated properly.

I will backport this to release25-maint.
Date User Action Args
2008-05-26 21:17:31gregory.p.smithsetspambayes_score: 0.0574908 -> 0.0574908
recipients: + gregory.p.smith, jnferguson
2008-05-26 21:17:31gregory.p.smithsetspambayes_score: 0.0574908 -> 0.0574908
messageid: <>
2008-05-26 21:17:30gregory.p.smithlinkissue2589 messages
2008-05-26 21:17:29gregory.p.smithcreate