search

wc-duck / datalibrary

Open Source Data Library for data serialization.
Other
42 stars 8 forks source link

member default value sizes smaller than its size causes no errors #135

Open lundmark opened 4 years ago

lundmark commented 4 years ago

In dl_load_txt_build_default_data() there is nothing that validates that the member's default_value_size is larger than or equal to its size. This causes dl_txt_pack_write_default_value()'s final if-statement (if( member_size != member->default_value_size ) to do all kind of crazy things like trying to write data that's sized to member->default_value_size - member_size