projects / open-adventure.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d747d43)
Fix off-by-one error that enabled the fuzzer to find a crash hole.
authorEric S. Raymond <esr@thyrsus.com>
Tue, 20 Jun 2017 11:20:03 +0000 (07:20 -0400)
committerEric S. Raymond <esr@thyrsus.com>
Tue, 20 Jun 2017 11:20:03 +0000 (07:20 -0400)
One has to allocate space for the trailing NUL, too.

misc.c patch | blob | history

diff --git a/misc.c b/misc.c
index 29846e23f6a5aef4aef9320ea180e8a0797a5800..71c7540669b2b3b8e178220360a89dd4cb8b9ea6 100644 (file)
--- a/misc.c
+++ b/misc.c
@@ -291,7 +291,7 @@ bool YES(const char* question, const char* yes_response, const char* no_response
 
         reply = get_input();
 
-        char* firstword = (char*) xmalloc(strlen(reply));
+        char* firstword = (char*) xmalloc(strlen(reply)+1);
         sscanf(reply, "%s", firstword);
 
         for (int i = 0; i < (int)strlen(firstword); ++i)
This code is a forward-port of the Crowther/Woods Adventure 2.5 from 1995, last version in the main line of Colossal Cave Adventure development written by the original authors. The authors have given permission and encouragement to this release.