Closed Bug 566054 Opened 15 years ago Closed 15 years ago

AsyncChannel can fprintf("%s", uninitialized_char_pointer) under the right conditions

Categories

(Core :: IPC, defect)

Product:
Core
Component:
IPC
Type:
defect
Priority:
Not set
Severity:
major

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: cjones, Assigned: cjones)

References

Details

Attachments

(1 file)

Add missing error message case, tighten up UNREACHED guard.
1.14 KB, patch
bent.mozilla
: review+
Details | Diff | Splinter Review
In bug 529005, we added a new channel state ChannelClosing. It's an error to send messages from that state, but we never added a new case the error-message printing code. This bug looks nasty, but AFAICT the worse that could result is a crash touching -r memory, so not involving [sg].
Assignee: nobody → jones.chris.g
Attachment #445468 - Flags: review?(bent.mozilla)
Attachment #445468 - Flags: review?(bent.mozilla) → review+
http://hg.mozilla.org/mozilla-central/rev/d6184048c153
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
Depends on: 576384
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: