patch 9.1.0404: [security] xxd: buffer-overflow with specific flags Commit: https://github.com/vim/vim/commit/67797191e039196128c69ba1538ccaf2a4711323 Author: Lennard Hofmann <lennard.hofmann@web.de> Date: Fri May 10 14:17:26 2024 +0200 patch 9.1.0404: [security] xxd: buffer-overflow with specific flags Problem: [security] xxd: buffer-overflow with specific flags Solution: Correctly calculate the required buffer space (Lennard Hofmann) xxd writes each output line into a global buffer before printing. The maximum size of that buffer was not calculated correctly. This command was crashing in AddressSanitizer: $ xxd -Ralways -g1 -c256 -d -o 9223372036854775808 /etc/passwd This prints a line of 6680 bytes but the buffer only had room for 6549 bytes. If the output from "-b" was colored, the line could be even longer. closes: #14738 Co-authored-by: K.Takata <kentkt@csc.jp> Signed-off-by: Lennard Hofmann <lennard.hofmann@web.de> Signed-off-by: Christian Brabandt <cb@256bit.org>

/* XPM */
static char * tb_jump_xpm[] = {
/* width height ncolors cpp [x_hot y_hot] */
"18 18 6 1 0 0",
/* colors */
" 	s none	m none	c none",
".	m black	c #888800",
"X	s bottomShadowColor	m black	c #5D6069",
"o	s iconColor6	m none	c #FFFF00",
"O	s iconColor1	m black	c #000000",
"+	s topShadowColor	m none	c #DCDEE5",
/* pixels */
"                  ",
"                  ",
"                  ",
"                  ",
"   .............. ",
"  .XooooooooooooOX",
" .XoooooooooooooOX",
".Xo+X+ooooooooooOX",
".ooXOXooooooooooOX",
"Xoo+X+ooooooooooOX",
"XOooooooooooooooOX",
" XOoooooooooooooOX",
"  XOOOOOOOOOOOOOOX",
"   XXXXXXXXXXXXXXX",
"                  ",
"                  ",
"                  ",
"                  "};