diff options
author | Michael Santos <[email protected]> | 2011-06-06 10:55:19 -0400 |
---|---|---|
committer | Raimo Niskanen <[email protected]> | 2011-06-07 17:50:33 +0200 |
commit | 9cf9cde066d26569178f5f67600278ae67e102dd (patch) | |
tree | 93c9842f47b23576f53ef6141c766c0d4ecd84c2 /erts/obj | |
parent | 612de104d23a01d5753ca39f4db4e14ba0234897 (diff) | |
download | otp-9cf9cde066d26569178f5f67600278ae67e102dd.tar.gz otp-9cf9cde066d26569178f5f67600278ae67e102dd.tar.bz2 otp-9cf9cde066d26569178f5f67600278ae67e102dd.zip |
ei: integer overflow in string/atom encoding
ei_encode_atom() and ei_encode_string() use strlen() to get the length
of the buffer. As strlen() returns an unsigned long long and both ei
functions take a signed integer, the length fields may overflow.
Check the results of strlen can be held in a signed integer.
Diffstat (limited to 'erts/obj')
0 files changed, 0 insertions, 0 deletions