[cairo-bugs] [Bug 91266] Out of bound access in struct pattern -> type

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Thu Jul 9 15:02:45 PDT 2015


Bryce Harrington <b.harrington at samsung.com> changed:

           What    |Removed                     |Added
             Status|NEW                         |RESOLVED
         Resolution|---                         |FIXED

--- Comment #1 from Bryce Harrington <b.harrington at samsung.com> ---
Thanks, applied.

commit 498fc2fbe31682754f1aa3864b764229d0b6838c
Author: Ashim <ashim.shah at samsung.com>
Date:   Thu Jul 9 10:43:30 2015 +0530

    Fix out of bound access in struct pattern->type

    The pattern structure is hardcoded to hold 7 elements, yet the
    pattern_names array in cairo-surface-observer.c is initialized with 8
    strings.  This causes a crash in print_array at line 1587 when it tries
    to access the 8th member.

    Hence changed the 'type' array from type[7] to type[8] to avoid out of
    bound access.

    Fixes: https://bugs.freedesktop.org/show_bug.cgi?id=91266
    Signed-off-by: Ashim <ashim.shah at samsung.com>
    Reviewed-by: Bryce Harrington <bryce at osg.samsung.com>

You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cairographics.org/archives/cairo-bugs/attachments/20150709/4dc6b3e5/attachment.html>

More information about the cairo-bugs mailing list