[
https://issues.apache.org/jira/browse/XERCESC-2235?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Scott Cantor resolved XERCESC-2235.
-----------------------------------
Fix Version/s: 4.0.0
Resolution: Fixed
Applied to both branches.
> DFAContentModel::buildDFA(): correctly zero-initialize fFollowList
> ------------------------------------------------------------------
>
> Key: XERCESC-2235
> URL: https://issues.apache.org/jira/browse/XERCESC-2235
> Project: Xerces-C++
> Issue Type: Bug
> Affects Versions: 3.2.3
> Reporter: Even Rouault
> Assignee: Scott Cantor
> Priority: Major
> Fix For: 4.0.0, 3.2.4
>
>
> Due to a copy&paste issue, the intended zero-initialization of
> fFollowList wasn't done (copy&paste issue), and thus in case of
> OutOfMemory exception when initializing the array, the memory freeing in
> cleanup() could access uninitialized elements.
> Follow-up of https://github.com/apache/xerces-c/pull/40 /
> a65990d79d3fc333d7481f010da4e165a88b6cb3
> Fixes GDAL's https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=42636
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
