[XALANC-760] Code analysis revealed multiple potential buffer overflows - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 1.11
Fix Version/s: None
Component/s: XalanC
Labels:
None

Description

src/xalanc/Harness/XalanXMLFileReporter.cpp
The float at line 490 can exceed 40 bytes in length (max double is 317 bytes)

src/xalanc/Utils/MsgCreator/MsgCreator.cpp
This utility lacks any buffer bounding to protect against buffer overflows

src/xalanc/Utils/MsgCreator/InMemHandler.cpp
This utility lacks any buffer bounding to protect against buffer overflows

src/xalanc/XalanExe/XalanExe.cpp
There is no upper bound on n_maxParams

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

XalanXMLFileReporter.patch
02/Mar/15 04:29
0.5 kB
Int3
XalanExe.patch
02/Mar/15 04:29
0.7 kB
Int3
MsgCreator.patch
02/Mar/15 04:29
4 kB
Int3
InMemHandler.patch
02/Mar/15 04:29
0.7 kB
Int3

Activity

People

Assignee:: Steven J. Hathaway

Reporter:: Int3

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 02/Mar/15 04:28

Updated:: 02/Mar/15 04:29