[rrd-developers] buffer overflow in global_ctx
Matthew Boyle
mlb at decisionsoft.com
Thu Apr 10 14:00:44 CEST 2008
lines 27 and 28 of rrd_not_thread_safe.c are the wrong way round. as a
result, global_ctx->rrd_error points to a 256 byte buffer, while
global_ctx->len claims it's 4096 bytes.
this means a long enough error message can lead to a buffer overflow in
rrd_set_error().
the attached patch (against the SVN snapshot) fixes this.
--matt
--
Matthew Boyle
Junior Systems Administrator
DecisionSoft Limited http://www.decisionsoft.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: reorder.diff
Type: text/x-patch
Size: 368 bytes
Desc: not available
Url : http://lists.oetiker.ch/pipermail/rrd-developers/attachments/20080410/b87de7cb/attachment.bin
More information about the rrd-developers
mailing list