[jira] [Commented] (XERCESC-2235) DFAContentModel::buildDFA(): correctly zero-initialize fFollowList

Scott Cantor (Jira) Wed, 05 Oct 2022 12:26:07 -0700


    [ 
https://issues.apache.org/jira/browse/XERCESC-2235?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17613120#comment-17613120
 ]


Scott Cantor commented on XERCESC-2235:
---------------------------------------

This is a fix to a patch I need to rework, so I'll pick up then.

> DFAContentModel::buildDFA(): correctly zero-initialize fFollowList
> ------------------------------------------------------------------
>
>                 Key: XERCESC-2235
>                 URL: https://issues.apache.org/jira/browse/XERCESC-2235
>             Project: Xerces-C++
>          Issue Type: Bug
>    Affects Versions: 3.2.3
>            Reporter: Even Rouault
>            Assignee: Scott Cantor
>            Priority: Major
>             Fix For: 3.2.4
>
>
> Due to a copy&paste issue, the intended zero-initialization of
> fFollowList wasn't done (copy&paste issue), and thus in case of
> OutOfMemory exception when initializing the array, the memory freeing in
> cleanup() could access uninitialized elements.
> Follow-up of https://github.com/apache/xerces-c/pull/40 / 
> a65990d79d3fc333d7481f010da4e165a88b6cb3
> Fixes GDAL's https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42636



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

---------------------------------------------------------------------
To unsubscribe, e-mail: c-dev-unsubscr...@xerces.apache.org
For additional commands, e-mail: c-dev-h...@xerces.apache.org

[jira] [Commented] (XERCESC-2235) DFAContentModel::buildDFA(): correctly zero-initialize fFollowList

Reply via email to