#16 C library Buffer Overflow

closed-fixed
nobody
None
5
2001-05-31
2001-05-31
No

Py-XMLRPC 0.8.5:

File "rpcSource.c", function "pyRpcSourceSetDesc":

...
srcp->desc = alloc(strlen(desc));
if (srcp->desc == NULL)
return NULL;
strcpy(srcp->desc, desc);
...

The "alloc" should be "alloc(strlen(desc)+1)" to save
the final '\0'.

There are more memory management functions, but I can´t
time just now to check them.

Discussion

  • Shilad Sen

    Shilad Sen - 2001-05-31
    • status: open --> closed-fixed
     
  • Shilad Sen

    Shilad Sen - 2001-05-31

    Logged In: YES
    user_id=184164

    in 0.8.6

     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

JavaScript is required for this form.





No, thanks