pkgsrc-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

pkg/43586: memory corruption caused by inputmethod/ja-freewnn-lib

>Number:         43586
>Category:       pkg
>Synopsis:       memory corruption caused by inputmethod/ja-freewnn-lib
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    pkg-manager
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Fri Jul 09 01:40:00 +0000 2010
>Originator:     SODA Noriyuki
>Release:        NetBSD 4.0_STABLE
System: NetBSD boggy-ben 4.0_STABLE NetBSD 4.0_STABLE (GENERIC_LAPTOP) #0: Thu 
Sep 25 05:35:51 PDT 2008 
Architecture: i386
Machine: i386
strange memory corruption is observed in an executable linked with libwnn.a.
not sure.
This problem is caused by the following declaration at line 2554
of Xsi/Wnn/jlib/js.c:
    static char s[6][EXPAND_PATH_LENGTH];

Since this array is used as follows at few lines later:
        num = sscanf(data, "%s %s %s %s %s %s %s",
this array has to be declared as:
    static char s[7][EXPAND_PATH_LENGTH];
Note: both the problem and the fix were found by Akira Kato @ Wide project.

Home | Main Index | Thread Index | Old Index