Re: mc-4.6.0-pre3 (and earlier) bug?

From: Pavel Roskin <proski gnu org>
To: Björn Eriksson <bjorn bjornen nu>
Cc: Tero Peippola <top ees2 oulu fi>, mc-devel gnome org
Subject: Re: mc-4.6.0-pre3 (and earlier) bug?
Date: Thu, 23 Jan 2003 09:20:48 -0500 (EST)

Hello!

> > It's a serious bug in the S-Lang library.  Function send_attr_str
> > overwrites the stack and then crashes:
>
>  Someone thought 256 will be enough for everyone. Someone was wrong :)
>
>    #if !defined(__MSDOS_16BIT__)
>    # define MAX_SCREEN_SIZE 256

That's actually for the rows (horizontal lines).  The problem in
send_attr_str() is due too many columns (vertical lines).  The "out" array
is 256 bytes long, so it gets overfilled.

I've applied a patch to slint.c to limit the screen size to 255x255.  mc
works fine at 255x255.

-- 
Regards,
Pavel Roskin

References:
- mc-4.6.0-pre3 (and earlier) bug?
  - From: Tero Peippola
- Re: mc-4.6.0-pre3 (and earlier) bug?
  - From: Pavel Roskin
- Re: mc-4.6.0-pre3 (and earlier) bug?
  - From: Björn Eriksson

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]