[Emacs-bug-tracker] bug#8683: closed (printf out-of-bounds memory access)

[GNU bug Tracking System]

Your message dated Wed, 18 May 2011 00:55:50 +0100
with message-id <address@hidden>
and subject line Re: bug#8683: printf out-of-bounds memory access
has caused the GNU bug report #8683,
regarding printf out-of-bounds memory access
to be marked as done.

(If you believe you have received this mail in error, please contact
address@hidden)


-- 
8683: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=8683
GNU Bug Tracking System
Contact address@hidden with problems
> --- Begin Message ---
>
>
>
> Subject: 
>
> printf out-of-bounds memory access
>
>
>
>
> Date: 
>
> Tue, 17 May 2011 16:31:40 +0100
>
>
>
>
> User-agent: 
>
> Mozilla/5.0 (X11; U; Linux x86_64; en-US;	rv:1.9.2.13) Gecko/20101208 Thunderbird/3.1.7
>
>
>
>
> In coreutils 8.12 (latest), printf can make an out-of-bounds access when 
> an integer argument consists only of a single or double quote.
>
> The printf spec mentions that an integer argument consisting of a 
> single/double quote followed by a character is interpreted as the ASCII 
> value of that character. However, when the quote is alone, the code in 
> the STRTOX macro (printf.c:171) goes beyond the buffer associated with 
> the argument.
>
> Possible fix: report an error at printf.c:166 if ch is 0.
>
>
> Paul
>
>
>
> --- End Message ---

--- Begin Message --- Subject: Re: bug#8683: printf out-of-bounds memory access Date: Wed, 18 May 2011 00:55:50 +0100 User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.8) Gecko/20100227 Thunderbird/3.0.3

On 17/05/11 16:54, Pádraig Brady wrote:
> On 17/05/11 16:31, Paul Marinescu wrote:
>> In coreutils 8.12 (latest), printf can make an out-of-bounds access when
>> an integer argument consists only of a single or double quote.

I'll apply the attached fix soon.

thanks again,
Pádraig.

printf-oob.diff
Description: Text Data

--- End Message ---