Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines

nano-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines

From:	Benno Schulenberg
Subject:	Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines
Date:	Sun, 16 Feb 2020 13:45:05 +0100
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.4.1

Op 16-02-2020 om 13:12 schreef Saagar Jha:
> This is just a minor out-of-bounds fix in parse_rcfile.
> 
> [...]
>               /* Strip the terminating newline and possibly a carriage 
> return. */
> -             if (buffer[length - 1] == '\n')
> +             if (length && buffer[length - 1] == '\n')
>                       buffer[--length] = '\0';
> -             if (buffer[length - 1] == '\r')
> +             if (length && buffer[length - 1] == '\r')
>                       buffer[--length] = '\0';

Thanks for noticing this.  However... only half of it is needed: the
while loop starts with the equivalent of 'length > 0'.

Also, when posting a patch, please add a Signed-off-by line.  See the
last section in the README.GIT file.

Benno

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH] Fix an rcfile out-of-bounds read on empty lines, Saagar Jha, 2020/02/16
- Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines, Benno Schulenberg <=
- Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines, Saagar Jha, 2020/02/16
  - Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines, Benno Schulenberg, 2020/02/17

Prev by Date: [PATCH] Fix an rcfile out-of-bounds read on empty lines
Next by Date: Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines
Previous by thread: [PATCH] Fix an rcfile out-of-bounds read on empty lines
Next by thread: Re: [PATCH] Fix an rcfile out-of-bounds read on empty lines
Index(es):
- Date
- Thread