Graphviz Issue Tracker
Mantis Bug Tracker

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0000321graphvizDotpublic2001-07-19 00:002011-04-28 04:02
Reporteruser442 
Assigned Toerg 
PrioritynormalSeverityminorReproducibilityalways
StatusclosedResolutionfixed 
PlatformOS*-*-*OS Version
Summary0000321: Use of static arrays
Description



Various functions in the code generators in common
use static buffers of size BUFSIZ for encoding strings into
escaped versions. Given that BUFSIZ is only 512 for Windows, and
the recent surge in the size of user labels, it is easy for the
functions to write beyond the end of the buffer, especially since
the escaped versions are typically longer than the original.



In general, any use of static buffers should be checked to make
sure they are safe.
TagsNo tags attached.
AUXILLARY-FILES
DATE-FIXED
FIX-COMMENT
Validate that buffer can't overflow or use dynamic buffer.

NB: cat_libfile in common/utils.c uses a buffer of size BUFSIZ to
read external library files. Also, svg_textline in common/svggen.c
uses svg_printf to output a line of text. The latter functio
FORMER-ID38
INPUT-FILE
OUTPUT-FILE
STATUS-COMMENTFixed (15 Jan 2002)
VERSION 1.7
Attached Files

- Relationships

-  Notes
There are no notes attached to this issue.

- Issue History
Date Modified Username Field Change
2011-04-28 04:02 user1 New Issue
2011-04-28 04:02 user1 Assigned To => erg


MantisBT 1.2.5[^]
Copyright © 2000 - 2011 MantisBT Group
Powered by Mantis Bugtracker