< Previous by Date	Date Index	Next by Date >
	Thread Index	Next in Thread >

[reSIProcate] memory overrun in MsgHeaderScanner.cxx

From: kaiduan xie <kaiduanx@xxxxxxxx>
Date: Wed, 29 Jun 2005 19:39:34 -0400 (EDT)

Hi, all,

Just found a memory overrun in MsgHeaderScanner.cxx, 

    static CharInfo charInfoArray[UCHAR_MAX];
    
    static void initCharInfoArray()
    {
        for(unsigned int charIndex = 0; charIndex <=
UCHAR_MAX; ++charIndex) 
        {
            charInfoArray[charIndex].category =
ccOther;
            charInfoArray[charIndex].textPropBitMask =
0;
        }

Here, charInfoArray has a size of UCHAR_MAX, but the
charIndex has value of UCHAR_MAX. Should we change it
to static CharInfo charInfoArray[UCHAR_MAX + 1];

Please confirm that.

Many thanks,

kaiduan

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

Follow-Ups:
- Re: [reSIProcate] memory overrun in MsgHeaderScanner.cxx
  - From: david Butcher

Prev by Date: Re: [reSIProcate] Multiple SRV-records and failure on first one
Next by Date: Re: [reSIProcate] (a) media stack and NAT/firewall support (b) 0.9 d/l
Previous by thread: [reSIProcate] unsolicited NOTIFY
Next by thread: Re: [reSIProcate] memory overrun in MsgHeaderScanner.cxx
Index(es):
- Date
- Thread