On Wed, 17 Apr 2002, Roman Hunt wrote:
> Ehlo: > I'm not too sure if this is necessary but it seems logical to get things > into charsets our compilers can handle. Hopefully this is the correct > approach . . . . also this should NULL terminate in the event that the > entire buffer had not yet been filled. > [SNIP] > >- cstring[s->bufused] = 0; >+ cstring[s->buflen + 1] = 0; > This is a buffer overflow; I'm not quite sure what you're trying to do, but this certainly doesn't do it. Simon
