Code quality in libjabber-0.1 (centericq)

Posted by Nico Golde in random blurb
Friday, January 5. 2007

grep -n -A 10 "FIXME avoid" xmlparse.c
  1. /* FIXME avoid integer overflow */                                                                      
  2. buffer = buffer == 0 ? malloc(len * 2) : realloc(buffer, len * 2);
  3. if (!buffer) {
  4.     errorCode = XML_ERROR_NO_MEMORY;
  5.     eventPtr = eventEndPtr = 0;
  6.     return 0;
  7. }
  8. bufferLim = buffer + len * 2;
  9. }
  10. memcpy(buffer, end, nLeftOver);
  11. bufferPtr = buffer;
  12.  
  13. /*** A FEW LINES LATER, SAME CODE ***/
  14.  
  15. /* FIXME avoid integer overflow */
  16. int neededSize = len + (bufferEnd - bufferPtr);
  17. if (neededSize  <= bufferLim - buffer) {
  18.     memmove(buffer, bufferPtr, bufferEnd - bufferPtr);
  19.     bufferEnd = buffer + (bufferEnd - bufferPtr);
  20.     bufferPtr = buffer;
  21. }
  22. else {
  23.     char *newBuf;
  24.     int bufferSize = bufferLim - bufferPtr;
  25.     if (bufferSize == 0)


Obviously the guy who wrote this has humor.
Comments (0) - Trackbacks (0)
(Page 1 of 1, totaling 1 entries)

Calendar

Back January '07 Forward
Mon Tue Wed Thu Fri Sat Sun
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31        

Quicksearch

Support



=>my website

Recent Entries

E-Plus GSM privacy/TMSI allocation leak
Thursday, October 11 2012
Exploiting the Ubiquisys/SFR femtocell webserver (wsal/shttpd/mongoose/yassl embedded webserver)
Wednesday, August 3 2011
So what happened recently...
Wednesday, April 6 2011
Sunday, February 6 2011
exim remote vulnerability
Thursday, December 9 2010
Will my Phone Show An Unencrypted Connection?
Wednesday, September 8 2010
smpCTF 2010 quals writeups
Sunday, August 8 2010
protocol design fail: MMS notification
Wednesday, July 28 2010
acrobat reader stealing my passwords
Tuesday, June 29 2010
UnrealIRCd backdoored
Saturday, June 12 2010

Archives

Syndicate This Blog

Categories



All categories

Tag cloud