![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
| author | Michael Haggerty <mhagger@alum.mit.edu> | |
| Fri, 23 Sep 2011 13:38:36 +0000 (15:38 +0200) | ||
| committer | Junio C Hamano <gitster@pobox.com> | |
| Wed, 5 Oct 2011 20:45:16 +0000 (13:45 -0700) | ||
| commit | d4e85a1afe0a3310a3c8336c2824775901cc27d7 | |
| tree | caf44e689fec5d36aef2439c8016bbebee413148 | tree | snapshot |
| parent | 3793ac56b4c4f9bf0bddc306a0cec21118683728 | commit | diff |
get_sha1_hex(): do not read past a NUL character
Previously, get_sha1_hex() would read one character past the end of a
null-terminated string whose strlen was an even number less than 40.
Although the function correctly returned -1 in these cases, the extra
memory access might have been to uninitialized (or even, conceivably,
unallocated) memory.
Add a check to avoid reading past the end of a string.
This problem was discovered by Thomas Rast <trast@student.ethz.ch>
using valgrind.
Signed-off-by: Michael Haggerty <mhagger@alum.mit.edu>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Previously, get_sha1_hex() would read one character past the end of a
null-terminated string whose strlen was an even number less than 40.
Although the function correctly returned -1 in these cases, the extra
memory access might have been to uninitialized (or even, conceivably,
unallocated) memory.
Add a check to avoid reading past the end of a string.
This problem was discovered by Thomas Rast <trast@student.ethz.ch>
using valgrind.
Signed-off-by: Michael Haggerty <mhagger@alum.mit.edu>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
| cache.h | diff | blob | history | |
| hex.c | diff | blob | history |