[h323plus] bug in dyna.cxx
Jan Willamowius
jan at willamowius.de
Tue Jan 11 16:30:41 EST 2011
Hi Alessandro,
the initialization is fixed in the CVS now. Thanks!
If you could provide a patch to switch to safe string routines that
would be great. So far we don't have any other volunteers.
Regards,
Jan
Alessandro Angeli wrote:
> h323plus\plugins\video\common\dyna.cxx line 70: DynaLink::Open()
>
> If %PTLIBPLUGINDIR% is not set and P_DEFAULT_PLUGIN_DIR is not defined,
> ptlibPath is never initialized and can cause a buffer overrun and stack
> corruption in InternalOpen().
>
> Probably the #ifdef should include an #else where ptlibPath is
> initialized to "".
>
> Are there any plans to update the code to use safe string routines?
>
> --
> Alessandro
>
>
--
Jan Willamowius, jan at willamowius.de, http://www.gnugk.org/
More information about the h323plus
mailing list