Tidy 5.7.20 GetSurrogatePair can use uninitialised value processing malformed entity refs #798
Labels
Comments
|
@dd8 thank for the issue and the patch... will try to include it soon... maybe remind me if too long... It is interesting, one of the issues mentioned in #788, 12074 I think, mentioned But regardless of that, agree with your assessment, we ignore the As stated, baring any negative comments, will try to include it soonest... thanks... |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
GetSurrogatePairignoresscanfreturn value, which meanschmay be uninitialised ifbufdoesn't contain hex or digits (or uses#incorrectly) leading to UTF encoding errors and undefined behaviour.Here's a patch for the issue
patch-scanf.diff.txt
Compiles in XCode 10 clang on Mac, Visual Studio 2015 on Windows
Tested in production on macOS 10.13, macOS 10.14, Windows 7, Windows 10, Windows Server 2016
Not tested on Linux/gcc
The text was updated successfully, but these errors were encountered: