[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#58850: 29.0.50; sqlite crashes on error
From: |
Gerd Möllmann |
Subject: |
bug#58850: 29.0.50; sqlite crashes on error |
Date: |
Wed, 2 Nov 2022 06:00:08 +0100 |
User-agent: |
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.4.1 |
On 02.11.22 04:33, Andrew Hyatt wrote:
It does work for me, thank you for the fix! I don't think I really
understand what is going on here either (does anyone? is the length of
the path in the name the relevant thing here?), but if there's a
solution that works, then that's enough for me, thanks. I'll close this
bug.
It was a classical stack-buffer overflow. The "name=..." part of the
printed representation of SQLite objects was printed to a fixed-size
buffer on the processor stack. With a long enough name, this overwrites
other stuff on the stack, like the return address, and boom. I fixed
this by not using a buffer al all, which is the way this is done
normally. There was actually no need for using the buffer in the first
place.
Thanks for the report, and the testing!