Uploaded image for project: 'Xerces-C++'
  1. Xerces-C++
  2. XERCESC-1291

Off-by-one error in DOMString.cpp

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.5.0
    • Fix Version/s: 2.6.0
    • Component/s: DOM
    • Labels:
      None
    • Environment:
      Tested on RedHat 8.0, gcc 3.2.3 using a source distribution of 2.5.0

      Description

      The DOMString class (in the deprecated API) attempts to access past-the-end of an array in the transcode() functions.

      This access was picked up with Valgrind 2.1.1. The effects of the error are uncertain (someone with more time on their hands may be willing to investigate further ?)

        Attachments

        1. DOMString.patch
          0.7 kB
          Michael McMaster

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              m4k3r Michael McMaster
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: