-
I just want to simply play my flv file on flash v7,
then I would like to modify fplayer for this purpose.
My question is, it is possible or not, to remove some portion of code that use actionscript v3, so that I can play my flv file on flash v7 (which support actionscript v2 only)?.
2009-08-23 07:41:29 UTC in flv Player
-
Should we handle some malform xml that not properly encode the quote?
The current behavior of Cimom::unescapeXml() look like these,
xxx"xxx --> xxx"xxx
xxx"xxx --> xxx\"xxx
Should we handle the first case like the following?,
xxx"xxx --> xxx\"xxx.
2009-07-09 11:14:27 UTC in Standards Based Linux Instrumentation
-
The possible solutions may be,
1. To not decoded "&" at all
2. To decoded "&", but always escape it with a backslash (& --> \&). With this solution, the backslash should also always be escaped with backslash ( \ --> \\ ), to make the & be distinguishable from the literal \&, for example,
\& --> \\&
& --> \&
3. To decoded "&", "&#nnn;", and...
2009-07-09 10:48:22 UTC in Standards Based Linux Instrumentation
-
According to the function Cimom::unescapeXml() in CimXml.cpp,
since "&" is decoded, but "&#nnn;" is not decoded, then "&#nnn;" and "&#nnn;" will be indistinguishable.
For example,
"
" --> "
"
We should make its unescape'd form to be distinguishable, since "
" means newline character, while " " mean "
" literally.
2009-07-09 10:33:14 UTC in Standards Based Linux Instrumentation
-
missing semicolon in "&apos" ?
- else REPL("&apos","'")
+ else REPL("'","'")
2009-06-24 04:31:10 UTC in Standards Based Linux Instrumentation
-
+ char *q, *buf = (char *) alloca(strlen(m) * (nq ? 2 : 1) + 1);
Should we prevent integer overflow, which can cause buffer overflow here?
For example,
if strlen(m) == 0x80000000
then strlen(m)*2 + 1 == 1.
2009-06-22 12:57:34 UTC in Standards Based Linux Instrumentation
-
Concatenating the uninitialized word[] to ptr[] at line 299 below, may also cause buffer overflow.
246 char word[11];
...
295 ptr=(char*)alloca(strlen(tag)+strlen(msg2)+8);
296 strcpy(ptr,msg2);
297 strcat(ptr,tag);
298 strcat(ptr,": ");
299 strcat(ptr,word);
300 throw ParseException(ptr);.
2009-06-22 10:10:56 UTC in Standards Based Linux Instrumentation
-
I've just found that this code and my patch can cause buffer overflow.
1. Escaping backslash can cause the destination to be longer than the original string.
2. Need to alloc one more byte for the null '\0' terminator. (Fortunately, this overflow just overwrite the local variable)
Below is the patch to fix this overflow,
- char *q, *buf = (char *) alloca(strlen(m));
+ char *q, *buf =...
2009-06-22 09:32:41 UTC in Standards Based Linux Instrumentation
-
Some typo in the above output (missing "=" after "Description"),
$ wbemcli gi 'http://user:pass@hostname/root/cimv2:Win32_Share.Name="test"'
hostname:5988/root/cimv2:...,Caption="test\"Test\",Description="test...
2009-06-12 08:35:21 UTC in Standards Based Linux Instrumentation
-
The following are the steps to reproduce the problem,
1. In my environment, I use wbemcli from gnu/linux to connect to a windows machine with wbem service installed.
2. On windows machine, create a share folder, with
Share name: test
Comment: test"Test\
3. Running the following wbemcli command from linux will return the result like,
$ wbemcli gi...
2009-06-12 08:25:28 UTC in Standards Based Linux Instrumentation
