[rrd-developers] buffer overflow in global_ctx

Matthew Boyle mlb at decisionsoft.com
Thu Apr 10 14:00:44 CEST 2008

lines 27 and 28 of rrd_not_thread_safe.c are the wrong way round.  as a 
result, global_ctx->rrd_error points to a 256 byte buffer, while 
global_ctx->len claims it's 4096 bytes.

this means a long enough error message can lead to a buffer overflow in 

the attached patch (against the SVN snapshot) fixes this.


Matthew Boyle
Junior Systems Administrator
DecisionSoft Limited                        http://www.decisionsoft.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: reorder.diff
Type: text/x-patch
Size: 368 bytes
Desc: not available
Url : http://lists.oetiker.ch/pipermail/rrd-developers/attachments/20080410/b87de7cb/attachment.bin 

More information about the rrd-developers mailing list