[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Gnash-commit] [bug #34686] action_buffer.cpp:52: void gnash::action_buf
From: |
Bastiaan Jacques |
Subject: |
[Gnash-commit] [bug #34686] action_buffer.cpp:52: void gnash::action_buffer::read(gnash::SWFStream&, long unsigned int): Assertion `endPos <= in.get |
Date: |
Sat, 29 Oct 2011 18:37:47 +0000 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1 |
Follow-up Comment #2, bug #34686 (project gnash):
Analysis:
In readPlaceActions(SWFStream& in), when event_length is first read, it is
zero. A key press event is detected, so event_length is reduced by one.
event_length is unsigned, so it becomes a very large number. This amount is
then passed on to action_buffer::read(), leading, if you are lucky, to an
abort.
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?34686>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/