Uploaded image for project: 'XalanC'
  1. XalanC
  2. XALANC-698

Buffer overflow from XalanMessageLoader::load()

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • CurrentCVS
    • XalanC
    • None
    • Probably any C++ Environment

    Description

      One of the XalanMessageLoader::load() overloads is calling XMLString::replaceTokens(), and not properly accounting for the NULL; replaceTokens() requires that the output buffer supplied be able to hold maxChars+1 characters.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. XERCESC-1921 Buffer overflow in XMLString::replaceTokens()

          • Major - Major loss of function.
          • Closed

          Activity

            People

              dbertoni David N Bertoni
              sacolcor Scott Colcord
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: