mirror of
git://git.code.sf.net/p/cdesktopenv/code
synced 2025-03-09 15:50:02 +00:00
history: fix out-of-bounds read on retrieving empty line
Reproducer: Compile a ksh with AddressSanitizer. In that ksh, edit the last command line with 'fc', insert an empty line at the start, and save. Now use the up-arrow to retrieve the empty line. Ksh aborts on history.c line 1011 as hist_copy() tries to read before the beginning of the buffer pointed to by s1. src/cmd/ksh93/edit/history.c: hist_copy(): - Verify that the s1 pointer was increased from the original s1 before trying to read the character *(s1-1).
This commit is contained in:
Martijn Dekker
parent
893ea066f7
commit
7a01d6df47
3 changed files with 8 additions and 3 deletions
|
|
@ -23,7 +23,7 @@
|
|||
|
||||
#define SH_RELEASE_FORK "93u+m" /* only change if you develop a new ksh93 fork */
|
||||
#define SH_RELEASE_SVER "1.0.0-beta.2" /* semantic version number: https://semver.org */
|
||||
#define SH_RELEASE_DATE "2022-07-09" /* must be in this format for $((.sh.version)) */
|
||||
#define SH_RELEASE_DATE "2022-07-10" /* must be in this format for $((.sh.version)) */
|
||||
#define SH_RELEASE_CPYR "(c) 2020-2022 Contributors to ksh " SH_RELEASE_FORK
|
||||
|
||||
/* Scripts sometimes field-split ${.sh.version}, so don't change amount of whitespace. */
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue