<<< Date Index >>>     <<< Thread Index >>>

Re: [Mutt] #2885: Buffer overflows in mutt_gecos_name



#2885: Buffer overflows in mutt_gecos_name

Comment (by Thomas Roessler):

 {{{
 On 2007-05-07 17:03:40 -0000, Mutt wrote:

 >          printf("%zu\n", (size_t)MAX(destlen - idx - pwnl - 1, 0));

 Woah.  destlen-idx-pwnl-1 is evaluated as an unsigned, and therefore
 always >= 0.
 }}}

-- 
Ticket URL: <http://dev.mutt.org/trac/ticket/2885#comment:>