Fix heap corruption (malloc buffer overrun)

Detected by the debug C runtime (when using --enable-dbgutil) when running a unit test.

Fix heap corruption (malloc buffer overrun)
Detected by the debug C runtime (when using --enable-dbgutil) when running a unit test.
ff7ee4a7 · Tor Lillqvist · 247d3ff1 · ff7ee4a7
Kaydet (Commit) ff7ee4a7 authored Agu 16, 2011 tarafından Tor Lillqvist
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

security.c sal/osl/w32/security.c +2 -2

No files found.
--- a/sal/osl/w32/security.c
+++ b/sal/osl/w32/security.c
@@ -164,8 +164,8 @@ oslSecurityError SAL_CALL osl_loginUserOnFileServer(rtl_uString *strUserName,
    sal_Unicode*                remoteName;
    sal_Unicode*                userName;

-    remoteName  = malloc(rtl_uString_getLength(strFileServer) + rtl_uString_getLength(strUserName) + 4);
-    userName    = malloc(rtl_uString_getLength(strFileServer) + rtl_uString_getLength(strUserName) + 2);
+    remoteName  = malloc((rtl_uString_getLength(strFileServer) + rtl_uString_getLength(strUserName) + 4) * sizeof(sal_Unicode));
+    userName    = malloc((rtl_uString_getLength(strFileServer) + rtl_uString_getLength(strUserName) + 2) * sizeof(sal_Unicode));

    wcscpy(remoteName, L"\\\\");
    wcscat(remoteName, rtl_uString_getStr(strFileServer));