Re: EOF buffer overflow with Xsane 0.76

From: Nick Lamb (njl98r@ecs.soton.ac.uk)
Date: Thu May 10 2001 - 20:01:39 PDT

Next message: Rupert Heesom: "Hope you don't mind a HELP-ME! post?"

Previous message: Nick Lamb: "Re: ( XSane parameters or buffer bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, May 10, 2001 at 10:09:49PM +0200, Marian Eichholz wrote:
> since Nick asked me for an example: Here I have the proof for the buffer
> overflow with Xsane 0.76.

Yup. That is not defensive programming, it definitely makes sense to
either resize the buffer or ask only for data which will fit in the
buffer.

It seems that I ought to have written a backend counter-part to the
scanimage -T patch :)

--
Source code, list archive, and docs: http://www.mostang.com/sane/
To unsubscribe: echo unsubscribe sane-devel | mail majordomo@mostang.com

Next message: Rupert Heesom: "Hope you don't mind a HELP-ME! post?"
Previous message: Nick Lamb: "Re: ( XSane parameters or buffer bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu May 10 2001 - 19:48:28 PDT