Mercurial > vim
view runtime/spell/main.aap @ 33879:d418c82f02a4 v9.0.2149
patch 9.0.2149: [security]: use-after-free in exec_instructions()
Commit: https://github.com/vim/vim/commit/5dd41d4b6370b7b7d09d691f9252b3899c66102a
Author: Christian Brabandt <cb@256bit.org>
Date: Mon Dec 4 22:52:23 2023 +0100
patch 9.0.2149: [security]: use-after-free in exec_instructions()
Problem: [security]: use-after-free in exec_instructions()
Solution: get tv pointer again
[security]: use-after-free in exec_instructions()
exec_instructions may access freed memory, if the GA_GROWS_FAILS()
re-allocates memory. When this happens, the typval tv may still point to
now already freed memory. So let's get that pointer again and compare it
with tv. If those two pointers differ, tv is now invalid and we have to
refresh the tv pointer.
closes: #13621
Signed-off-by: Christian Brabandt <cb@256bit.org>
author | Christian Brabandt <cb@256bit.org> |
---|---|
date | Sun, 10 Dec 2023 15:16:17 +0100 |
parents | d314efe6447a |
children |
line wrap: on
line source
# Toplevel Aap recipe for Vim spell files # # Usage: # aap generate all the .spl files # aap diff create all the diff files # "hu" is at the end, because it takes a very long time. # "eu" takes even longer (4 hours on my system). LANG = af am bg br ca cs cy da de el en eo es fr fo ga gd gl he hr id it ku la lt lv mg mi ms nb nl nn ny pl pt ro ru rw sk sl sv sw tet th tl tn tr uk yi zu hu eu # TODO: # Finnish doesn't work, the dictionary fi_FI.zip file contains hyphenation... diff: $*LANG/diff :print Done. @for l in string.split(_no.LANG): :child $l/main.aap # The existing .spl files need to be generated when the spell file format # changes. Depending on the Vim executable does that, but results in doing it # much too often. Generate a dummy .spl file and let the .spl depend on it, so # that they are outdated when it changes. :child check/main.aap *.spl: check/check.latin1.spl