Mercurial > vim

view src/GvimExt/gvimext_ming.rc @ 33863:3b8089d550eb v9.0.2141

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
patch 9.0.2141: [security]: buffer-overflow in suggest_trie_walk Commit: https://github.com/vim/vim/commit/0fb375aae608d7306b4baf9c1f906961f32e2abf Author: Christian Brabandt <cb@256bit.org> Date: Wed Nov 29 10:23:39 2023 +0100 patch 9.0.2141: [security]: buffer-overflow in suggest_trie_walk Problem: [security]: buffer-overflow in suggest_trie_walk Solution: Check n before using it as index into byts array Basically, n as an index into the byts array, can point to beyond the byts array. So let's double check, that n is within the expected range after incrementing it from sp->ts_curi and bail out if it would be invalid. Reported by @henices, thanks! Signed-off-by: Christian Brabandt <cb@256bit.org>
author Christian Brabandt <cb@256bit.org>
date Sun, 10 Dec 2023 15:16:03 +0100
parents 4e2284e71352
children
line wrap: on
line source

#include <windows.h>
#define xstr(x) str(x)
#define str(x) #x
VS_VERSION_INFO VERSIONINFO
 FILEVERSION 1,0,0,1
 PRODUCTVERSION 1,0,0,1
 FILEFLAGSMASK 0x3fL
#ifdef _DEBUG
 FILEFLAGS 0x3L
#else
 FILEFLAGS 0x2L
#endif
 FILEOS 0x4L
 FILETYPE VFT_DLL
 FILESUBTYPE 0x0L
{
    BLOCK "StringFileInfo"
    {
        BLOCK "040904b0"
        {
            VALUE "Comments", "Developed using COM architecture!\0"
            VALUE "CompanyName", "Tianmiao Hu's Developer Studio\0"
            VALUE "FileDescription", "A small project for the context menu of gvim!\0"
            VALUE "FileVersion", "1, 0, 0, 1\0"
            VALUE "InternalName", "gvim right-click menu extension\0"
            VALUE "LegalCopyright", "Copyright © 1999 Tianmiao Hu\0"
            VALUE "LegalTrademarks", "Tianmiao Hu's Gvim Context Menu Extension\0"
            VALUE "OriginalFilename", "gvimext.dll\0"
            VALUE "PrivateBuild", "\0"
            VALUE "ProductName", "Tianmiao Hu's  gvimext context menu extension\0"
            VALUE "ProductVersion", "1, 0, 0, 1\0"

#if defined(__GNUC__)
            VALUE "SpecialBuild", "Build With " "MingW " xstr(__GNUC__) "." xstr(__GNUC_MINOR__) "." xstr(__GNUC_PATCHLEVEL__)  " on " __DATE__ " " __TIME__ "\0"
#else
            VALUE "SpecialBuild", "Unknown compiler\0"

#endif
        }
    }
    BLOCK "VarFileInfo"
    {
        VALUE "Translation", 0x409, 1200
    }
}