cmd_print() has a bug that causes a crash on very long commands.
args_print() may return a value equal to the passed-in length, and
cmd_print() appends a null after that location, which steps on the stack of
cmdq_continue(). This patch reserves space for the null in the length
passed to arg_print().

Attachment: cmd_print_buffer_overflow.diff
Description: Binary data

------------------------------------------------------------------------------
Introducing AppDynamics Lite, a free troubleshooting tool for Java/.NET
Get 100% visibility into your production application - at no cost.
Code-level diagnostics for performance bottlenecks with <2% overhead
Download for free and get started troubleshooting in minutes.
http://p.sf.net/sfu/appdyn_d2d_ap1
_______________________________________________
tmux-users mailing list
tmux-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/tmux-users

Reply via email to