[Bug 6677] Buffer overflows in the msvcrt *printf family
Wine Bugs
wine-bugs at winehq.org
Mon Nov 13 12:20:42 CST 2006
http://bugs.winehq.org/show_bug.cgi?id=6677
------- Additional Comments From the3dfxdude at gmail.com 2006-13-11 12:20 -------
Sam, there is a bug number 1789 for problems with float conversions. Yes, the
method we use for float is rather brain dead and clearly has bugs. For problems
with integers, I'd like to see your test case.
> Additionally, when extra memory is allocated, pf_vsnprintf uses the pointer to
> the static buffer instead of the dynamically allocated one in the HeapFree call.
No it should use a dyanmic buffer when the field size is greater than 40.
FieldLength should match the number of actual digit outputs at the end of
conversion I believe. I should have created test cases against precision at
least (with I64), but if it does not match what you are talking about could you
create one to show a buffer overrun problem?
--
Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the wine-bugs
mailing list