Try to capture some more potential buffer overflows caused by localization

A couple of these could clearly cause a crash just like the one fixed by commit 00865f5a1e1a ("equipment.c: Fix potential buffer overflow in size_data_funct()"). One would append user input to fixed length buffer without checking. We were hardcoding the (correct) max path length in macos.c - replaced by the actual OS constant. But the vast majority are just extremely generous guesses how long localized strings could possibly be. Yes, this commit is likely leaning towards overkill. But we have now been bitten by buffer overflow crashes twice that were caused by localization, so I tried to go through all of the code and identify every possible buffer that could be affected by this. Signed-off-by: Dirk Hohndel <dirk@hohndel.org>
author: Dirk Hohndel <dirk@hohndel.org> 2013-03-03 17:53:43 -0800
committer: Dirk Hohndel <dirk@hohndel.org> 2013-03-03 20:18:23 -0800
commit: 01291929582ac573d7efd7fba3dbe061c9d70f9a (patch)
tree: cc836d5c2e40d26dd8f39dd5bad6c5193f2ef04d /dive.c
parent: 93eeb03d67baac26da4153a163bf35567b106524 (diff)
download: subsurface-01291929582ac573d7efd7fba3dbe061c9d70f9a.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/dive.c b/dive.c
index 3e2d8dd5e..1b4c78306 100644
--- a/dive.c
+++ b/dive.c
@@ -354,7 +354,7 @@ static void match_standard_cylinder(cylinder_type_t *type)
 	double cuft;
 	int psi, len;
 	const char *fmt;
-	char buffer[20], *p;
+	char buffer[40], *p;
 
 	/* Do we already have a cylinder description? */
 	if (type->description)
author	Dirk Hohndel <dirk@hohndel.org>	2013-03-03 17:53:43 -0800
committer	Dirk Hohndel <dirk@hohndel.org>	2013-03-03 20:18:23 -0800
commit	01291929582ac573d7efd7fba3dbe061c9d70f9a (patch)
tree	cc836d5c2e40d26dd8f39dd5bad6c5193f2ef04d /dive.c
parent	93eeb03d67baac26da4153a163bf35567b106524 (diff)
download	subsurface-01291929582ac573d7efd7fba3dbe061c9d70f9a.tar.gz