Author gregory.p.smith
Recipients gregory.p.smith, jnferguson
Date 2008-05-26.21:17:29
SpamBayes Score 0.0574908
Marked as misclassified No
Message-id <1211836651.1.0.00503095492342.issue2589@psf.upfronthosting.co.za>
In-reply-to
Content
Fixed in trunk r63728.


There was a problem with the code on normal architectures as well.

The input was a size_t while the output was an int.  So an integer
overflow could have happened going from the vsnprintf return value to
the integer since size_t is unsigned and int isn't (also when size_t is
a larger type than an int).

I don't think that would lead to memory corruption when using the
system's vsnprintf but it could have bad results if the caller expected
str to be null terminated properly.


I will backport this to release25-maint.
History
Date User Action Args
2008-05-26 21:17:31gregory.p.smithsetspambayes_score: 0.0574908 -> 0.0574908
recipients: + gregory.p.smith, jnferguson
2008-05-26 21:17:31gregory.p.smithsetspambayes_score: 0.0574908 -> 0.0574908
messageid: <1211836651.1.0.00503095492342.issue2589@psf.upfronthosting.co.za>
2008-05-26 21:17:30gregory.p.smithlinkissue2589 messages
2008-05-26 21:17:29gregory.p.smithcreate