[Bug 46661] ISF_Desktop_fnGetDisplayNameOf function missing check for string variable This- >sPathTarget before copy it
wine-bugs at winehq.org
wine-bugs at winehq.org
Thu Feb 21 01:16:29 CST 2019
https://bugs.winehq.org/show_bug.cgi?id=46661
--- Comment #17 from ossecurity <ossecurity at iscas.ac.cn> ---
(In reply to Nikolay Sivov from comment #16)
> You can corrupt any memory at any point during method execution, there is no
> way to check for that.
>
> There are many places that need improvement in shell32 or other modules,
> like fixed size buffer copies without length check. Case you are describing
> is not interesting.
Only the data which can be accessed by WINAPI parameters and return values need
to be checked. Other inner variables are safe.
--
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.
More information about the wine-bugs
mailing list