Mercurial > vim
view src/testdir/dumps/Test_Xcursorline_19.dump @ 33130:3e4c08a8d637 v9.0.1847
patch 9.0.1847: [security] potential oob write in do_addsub()
Commit: https://github.com/vim/vim/commit/889f6af37164775192e33b233a90e86fd3df0f57
Author: Christian Brabandt <cb@256bit.org>
Date: Sat Sep 2 19:43:33 2023 +0200
patch 9.0.1847: [security] potential oob write in do_addsub()
Problem: potential oob write in do_addsub()
Solution: don't overflow buf2, check size in for loop()
Signed-off-by: Christian Brabandt <cb@256bit.org>
author | Christian Brabandt <cb@256bit.org> |
---|---|
date | Sat, 02 Sep 2023 20:00:02 +0200 |
parents | 8201b0fcea02 |
children |
line wrap: on
line source
>1+8&#ffffff0|-+8#0000e05&|f+8#0000000&|o@7|-+8#0000e05&|a+8#0000000&|r|-+8#0000e05&|e+8#0000000&|i|n|s|<+8#0000e05&|2|0@1|d|>||+1#0000000&| +0#af5f00255&@1|1| |1+0#0000000&| |f|o@7| |a|r| |e|i|n|s|<+0#0000e05&|2|0@1|d|>|z+0#0000000&|w|e|i| |d|r|e|i| |v|i|e|r| |f|ü|n|f| |>+0#4040ff13&|z+0#0000000&|w|e|i|-+0#0000e05&|d+0#0000000&|r|e|i|-+0#0000e05&|v+0#0000000&|i|e|r|-+0#0000e05&|f+0#0000000&|ü|n|f|-+0#0000e05&|s+0#0000000&|e|c|h||+1&&| +0#af5f00255&@3|>+0#4040ff13&|s+0#0000000&|e|c|h|s| |s|i|e|b|e|n| |a|c|h|t| |u|n| |z|e|h|n| |e|l|f| |z|w|ö|f|l| |d|r|e|i|z|e|h|n |>+0#4040ff13&|s+0#0000000&|-+0#0000e05&|s+0#0000000&|i|e|b|e|n|-+0#0000e05&|a+0#0000000&|c|h|t|-+0#0000e05&|u+0#0000000&|n|-+0#0000e05&|z+0#0000000&|e|h|n|-+0#0000e05&|e+0#0000000&|l||+1&&| +0#af5f00255&@3|>+0#4040ff13&| +0#0000000&@5|v| |i|e|r|z|e|h|n| @5|f|ü|n|f|z|e|h|n| @14 |>+0#4040ff13&|f+0#0000000&|-+0#0000e05&|z+0#0000000&|w|ö|f|l|-+0#0000e05&|d+0#0000000&|r|e|i|z|e|h|n|^+0#0000e05&|I|v+0#0000000&|-+0#0000e05&|i+0#0000000&|e|r|z||+1&&| +0#af5f00255&@1|2| |2+0#0000000&| |f|o@7| |b|a|r| |e|i|n|s| |z|w|e|i| |d|r|e|i| |v|i|e|r| |f|ü|n|f| |s|e|c|h |>+0#4040ff13&|e+0#0000000&|h|n|^+0#0000e05&|I|f+0#0000000&|ü|n|f|z|e|h|n| @10||+1&&| +0#af5f00255&@3|>+0#4040ff13&|s+0#0000000&| |s|i|e|b|e|n| @35 |2|-+0#0000e05&|f+0#0000000&|o@7|-+0#0000e05&|b+0#0000000&|a|r|-+0#0000e05&|e+0#0000000&|i|n|s|-+0#0000e05&|z+0#0000000&|w|e|i||+1&&| +0#af5f00255&@1|3| |3+0#0000000&| |f|o@7| |b|a|r| |e|i|n|s| |z|w|e|i| |d|r|e|i| |v|i|e|r| |f|ü|n|f| |s|e|c|h |>+0#4040ff13&|-+0#0000e05&|d+0#0000000&|r|e|i|-+0#0000e05&|v+0#0000000&|i|e|r|-+0#0000e05&|f+0#0000000&|ü|n|f|-+0#0000e05&|s+0#0000000&|e|c|h|s|-+0#0000e05&|s+0#0000000&|i||+1&&| +0#af5f00255&@3|>+0#4040ff13&|s+0#0000000&| |s|i|e|b|e|n| @35 |>+0#4040ff13&|e+0#0000000&|b|e|n| @19||+1&&| +0#af5f00255&@1|4| |4+0#0000000&| |f|o@7| |b|a|r| |e|i|n|s| |z|w|e|i| |d|r|e|i| |v|i|e|r| |f|ü|n|f| |s|e|c|h |3|-+0#0000e05&|f+0#0000000&|o@7|-+0#0000e05&|b+0#0000000&|a|r|-+0#0000e05&|e+0#0000000&|i|n|s|-+0#0000e05&|z+0#0000000&|w|e|i||+1&&| +0#af5f00255&@3|>+0#4040ff13&|s+0#0000000&| |s|i|e|b|e|n| @35 |>+0#4040ff13&|-+0#0000e05&|d+0#0000000&|r|e|i|-+0#0000e05&|v+0#0000000&|i|e|r|-+0#0000e05&|f+0#0000000&|ü|n|f|-+0#0000e05&|s+0#0000000&|e|c|h|s|-+0#0000e05&|s+0#0000000&|i||+1&&| +0#af5f00255&@1|5| | +8#0000000&@44 |>+0#4040ff13&|e+0#0000000&|b|e|n| @19||+1&&|~+0#4040ff13&| @47 |4+0#0000000&|-+0#0000e05&|f+0#0000000&|o@7|-+0#0000e05&|b+0#0000000&|a|r|-+0#0000e05&|e+0#0000000&|i|n|s|-+0#0000e05&|z+0#0000000&|w|e|i||+1&&|~+0#4040ff13&| @47 |>|-+0#0000e05&|d+0#0000000&|r|e|i|-+0#0000e05&|v+0#0000000&|i|e|r|-+0#0000e05&|f+0#0000000&|ü|n|f|-+0#0000e05&|s+0#0000000&|e|c|h|s|-+0#0000e05&|s+0#0000000&|i||+1&&|~+0#4040ff13&| @47 |>|e+0#0000000&|b|e|n| @19||+1&&|~+0#4040ff13&| @47 | +0#0000000&@24||+1&&|~+0#4040ff13&| @47 |~| @23||+1#0000000&|~+0#4040ff13&| @47 |~| @23||+1#0000000&|~+0#4040ff13&| @47 |~| @23||+1#0000000&|~+0#4040ff13&| @47 |<+3#0000000&|o| |N|a|m|e|]| |[|+|]| |1|,|1| @5|A|l@1| |[+1&&|N|o| |N|a|m|e|]| |[|+|]| @17|5|,|0|-|1| @9|A|l@1 |:+0&&|s|e|t| |n|o|n|u|m|b|e|r| @61