Re: EOF buffer overflow with Xsane 0.76

From: Nick Lamb (njl98r@ecs.soton.ac.uk)
Date: Thu May 10 2001 - 20:01:39 PDT

  • Next message: Rupert Heesom: "Hope you don't mind a HELP-ME! post?"

    On Thu, May 10, 2001 at 10:09:49PM +0200, Marian Eichholz wrote:
    > since Nick asked me for an example: Here I have the proof for the buffer
    > overflow with Xsane 0.76.

    Yup. That is not defensive programming, it definitely makes sense to
    either resize the buffer or ask only for data which will fit in the
    buffer.

    It seems that I ought to have written a backend counter-part to the
    scanimage -T patch :)

    --
    Source code, list archive, and docs: http://www.mostang.com/sane/
    To unsubscribe: echo unsubscribe sane-devel | mail majordomo@mostang.com
    



    This archive was generated by hypermail 2b29 : Thu May 10 2001 - 19:48:28 PDT