On 6/10/2025 4:21 PM, David Geier wrote:
The loop advances the pointer via start_address += len.
-- David Geier (ServiceNow)
But just seeing now that size in EstimateLibraryState() is initialized
to 1. So that total size should actually be fine. Weird that the patch
makes the sanitizer error disappear.
- Buffer overflow in SerializeLibraryState() found by Addr... David Geier
- Re: Buffer overflow in SerializeLibraryState() foun... Daniel Gustafsson
- Re: Buffer overflow in SerializeLibraryState() ... David Geier
- Re: Buffer overflow in SerializeLibraryStat... David Geier
