[Python-checkins] r70683 - in python/branches/release26-maint: Objects/stringobject.c
mark.dickinson
python-checkins at python.org
Sun Mar 29 18:18:34 CEST 2009
Author: mark.dickinson
Date: Sun Mar 29 18:18:33 2009
New Revision: 70683
Log:
Merged revisions 70682 via svnmerge from
svn+ssh://pythondev@svn.python.org/python/trunk
........
r70682 | mark.dickinson | 2009-03-29 17:17:16 +0100 (Sun, 29 Mar 2009) | 3 lines
Issue #532631: Add paranoid check to avoid potential buffer overflow
on systems with sizeof(int) > 4.
........
Modified:
python/branches/release26-maint/ (props changed)
python/branches/release26-maint/Objects/stringobject.c
Modified: python/branches/release26-maint/Objects/stringobject.c
==============================================================================
--- python/branches/release26-maint/Objects/stringobject.c (original)
+++ python/branches/release26-maint/Objects/stringobject.c Sun Mar 29 18:18:33 2009
@@ -4336,6 +4336,15 @@
}
if (prec < 0)
prec = 6;
+ /* make sure that the decimal representation of precision really does
+ need at most 10 digits: platforms with sizeof(int) == 8 exist! */
+ if (prec > 0x7fffffffL) {
+ PyErr_SetString(PyExc_OverflowError,
+ "outrageously large precision "
+ "for formatted float");
+ return -1;
+ }
+
if (type == 'f' && fabs(x) >= 1e50)
type = 'g';
/* Worst case length calc to ensure no buffer overrun:
@@ -4364,7 +4373,7 @@
PyOS_snprintf(fmt, sizeof(fmt), "%%%s.%d%c",
(flags&F_ALT) ? "#" : "",
prec, type);
- PyOS_ascii_formatd(buf, buflen, fmt, x);
+ PyOS_ascii_formatd(buf, buflen, fmt, x);
return (int)strlen(buf);
}
More information about the Python-checkins
mailing list