[MXS-394] Faults in regex_replace function of regexfilter.c - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 1.2.1
Fix Version/s: 1.3.0
Component/s: regexfilter
Labels:
None
Environment:
Any

Description

The function uses realloc without checks. More immediately significant, on line 456 the variable "result" is reallocated, but no change is made to the pointer to it. Consequently, the memcpy that follows is liable to write into the freed memory space resulting from the realloc operation.

The function could be more effective if it made two passes, first computing the space required for the transformed string, then making a memory allocation (if necessary) and carrying out the replacements.

But it would probably be better altogether to use the PCRE function "pcre2_substitute" which appears to do the job without any development effort at all.

Attachments

Activity

People

Assignee:: markus makela

Reporter:: martin brampton (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2015-10-05 12:09

Updated:: 2015-11-03 14:27

Resolved:: 2015-11-03 14:27

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.