function nextWord() in parser.c might move the character pointer beyond the terminating zero of the string
Bug #1906996 reported by
Florian Königstein
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Panotools |
New
|
Undecided
|
Unassigned | ||
Bug Description
When calling the function
void nextWord( register char* word, char** ch )
in the file parser.c with a syntactically incorrect string that begins with a " but ends
with the terminating zero (without corresponding "), the pointer *ch (and c) are moved beyond the
terminating zero of the string in the statement
c++; // to eat last character
This bug might be a problem e.g. if a script file with the incorrect line
p f2 w3000 h1500 v360 n"TIFF_m
is parsed by ParseScript() in parser.c .
The problem can be solved by replacing this statement by
if(0 != *c)
c++; // to eat last character
| information type: | Private Security → Public |
Revision history for this message
| Bruno Postle (brunopostle) wrote | #1 |
Revision history for this message
| Bruno Postle (brunopostle) wrote | #2 |
To post a comment you must log in.
Thanks, this doesn't seem to break anything, committed (this may be time for another release candidate)