[xml] Dangerous...

From: Mathias Hasselmann (Mathias.Hasselmann@gmx.de)
Date: Mon Oct 04 1999 - 12:33:56 EDT

• Next message: Bernie Rosman: "[xml] is libxml-1.7.3.thread-safe?"
• Previous message: Mathias Hasselmann: "Re: [xml] Interactive node insertion"
• Next in thread: Daniel Veillard: "Re: [xml] Dangerous..."
• Reply: Daniel Veillard: "Re: [xml] Dangerous..."

While digging around the source ("How did he implement validation?")
I've found that:

valid.c: 2780
                char expr[1000];
                char list[2000];

                expr[0] = 0;
                xmlSprintfElementContent(expr, cont, 1);
                list[0] = 0;
                xmlSprintfElementChilds(list, elem, 1);

Shouldn't xmlSprintf.* check buffer sizes?

-> xmlSprintfElementContent(expr, sizeof (expr), cont, 1);

Ciao
Mathias

-- 
WWW: http://www.arco.de/~mhasselm/ http://www.dominanz-haus.de/
PGP-Fingerprint: 4D15 89ED 7299 6428 FEE6  C66F 5D40 6504 55E5 72F3
----
Message from the list xml@rufus.w3.org
Archived at : http://rufus.w3.org/veillard/XML/messages
to unsubscribe: echo "unsubscribe xml" | mail  majordomo@rufus.w3.org

• Next message: Bernie Rosman: "[xml] is libxml-1.7.3.thread-safe?"
• Previous message: Mathias Hasselmann: "Re: [xml] Interactive node insertion"
• Next in thread: Daniel Veillard: "Re: [xml] Dangerous..."
• Reply: Daniel Veillard: "Re: [xml] Dangerous..."

This archive was generated by hypermail 2b29 : Wed Aug 02 2000 - 12:29:48 EDT