Closed Bug 352562 Opened 19 years ago Closed 7 years ago

nsInstallDlg::XPIProgressCB doesn't worry that its input will fit

Categories

(Core Graveyard :: Installer: XPInstall Engine, defect)

Product:

Component:

Platform:

x86

SunOS

Type:

defect

Priority:

Not set

Severity:

trivial

Tracking

(Not tracked)

Status:

RESOLVED INVALID

People

(Reporter: timeless, Unassigned)

References

(
URL
)

Details

(Keywords: klocwork)

Reporter

Description

•

19 years ago

https://opensource.klocwork.com/idm/problem.html?project=firefox&pid=91669 as long as no localizer sticks the : early enough in the 63 character buffer and as long as the leaf name combined with the text up to the colon doesn't exceed 63, there's no problem. http://lxr.mozilla.org/seamonkey/source/xpinstall/src/nsInstallResources.cpp#51 shows the current table and http://lxr.mozilla.org/seamonkey/source/toolkit/locales/en-US/chrome/global/xpinstall/xpinstall.properties#43 is the toolkit replacement i suppose a locale could conspire to put the : in a bad place, but if your locale is evil, you're screwed half a dozen other ways, locales have to be trustworthy (even when they're broken, as was the case with a mail crash recently). and you shouldn't be installing xpi's from untrusted sources either.

Phil Ringnalda (:philor)

Updated

•

16 years ago

Assignee: xpi-engine → nobody

QA Contact: xpi-engine

Nobody; OK to take it and work on it

Assignee

Updated

•

10 years ago

Product: Core → Core Graveyard

Sylvestre Ledru [:Sylvestre]

Comment 1

•

7 years ago

Pretty sure this is irrelevant now.

Status: NEW → RESOLVED

Closed: 7 years ago

Resolution: --- → INVALID

You need to log in before you can comment on or make changes to this bug.