Google Git
Sign in
kernel / pub / scm / editors / uemacs / uemacs / 25f0141df133f3522c6d23ddd96ae341813b9638
commit25f0141df133f3522c6d23ddd96ae341813b9638[log] [tgz]
authorLinus Torvalds <torvalds@linux-foundation.org>Fri Feb 22 14:29:43 2013 -0800
committerLinus Torvalds <torvalds@linux-foundation.org>Fri Feb 22 14:29:43 2013 -0800
treec4036efca6e2a437275886d9408d11b0fa9a7f3a
parent8899ed4e1f076d6f3c400731992210513bb629d3 [diff]
Avoid memory access errors if llength() overflows

llength() is currently a 'short' which can overflow and result in signed
numbers if line lengths are larger than 32k.  We'll fix the overflow
separately, but before we do that, just use a signed int to hold the
value so that we don't overrun memory allocations when we converted that
negative number to a large positive unsigned integer.

Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
1 file changed
tree: c4036efca6e2a437275886d9408d11b0fa9a7f3a
  1. .gitignore
  2. ansi.c
  3. basic.c
  4. bind.c
  5. buffer.c
  6. crypt.c
  7. display.c
  8. ebind.h
  9. edef.h
  10. efunc.h
  11. emacs.hlp
  12. emacs.ps
  13. emacs.rc
  14. epath.h
  15. estruct.h
  16. eval.c
  17. evar.h
  18. exec.c
  19. file.c
  20. fileio.c
  21. globals.c
  22. ibmpc.c
  23. input.c
  24. isearch.c
  25. line.c
  26. line.h
  27. lock.c
  28. main.c
  29. Makefile
  30. names.c
  31. pklock.c
  32. posix.c
  33. random.c
  34. README
  35. readme.39e
  36. region.c
  37. search.c
  38. shell.cmd
  39. spawn.c
  40. tcap.c
  41. termio.c
  42. usage.c
  43. usage.h
  44. UTF-8-demo.txt
  45. utf8.c
  46. utf8.h
  47. util.h
  48. version.c
  49. version.h
  50. vmsvt.c
  51. vt52.c
  52. window.c
  53. word.c
  54. wrapper.c
  55. wrapper.h