logger.c has a one-byte buffer overflow

stephenfewer / grinder

Grinder is a system to automate the fuzzing of web browsers and the management of a large number of crashes.

BSD 3-Clause "New" or "Revised" License

415 stars 131 forks source link

Closed guhe120 closed 10 years ago

guhe120 commented 10 years ago

File: grinder / node / source / logger / logger.c

Line 167: if( dwLengthA > dwLogMessageSize )
{ ............... }

if dwLengthA == dwLogMessageSize, the following statement will cause the overflow:

Line 188: cpLogMessage[dwLengthA] = 0;

stephenfewer commented 10 years ago

Thanks for the report guhe120 :)