[ros-bugs] [Bug 1104] New: Potential buffer overflow in GetExpandedNameA

Sat Dec 10 17:14:46 CET 2005

http://www.reactos.org/bugzilla/show_bug.cgi?id=1104

           Summary: Potential buffer overflow in GetExpandedNameA
           Product: ReactOS
           Version: TRUNK
          Platform: x86 Hardware
        OS/Version: ReactOS
            Status: NEW
          Severity: normal
          Priority: P3
         Component: Win32
        AssignedTo: ros-bugs at reactos.org
        ReportedBy: mbealby at gmail.com
         QAContact: ros-bugs at reactos.org

File: reactos/lib/kernel32/misc/lzexpand_main.c
Func: GetExpandedNameA
Line: 234 (subversion revision 19963)

This function copies the contents of the parameter 'in' to the parameter 'out'.
If 'in' is larger than 'out' then a buffer overflow will occur. Should some
bounds checking be implemented here?

-- 
Configure bugmail: http://www.reactos.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
You are the QA contact for the bug, or are watching the QA contact.