aboutsummaryrefslogtreecommitdiff
path: root/src
diff options
context:
space:
mode:
authoroni-link <knil.ino@gmail.com>2015-06-07 12:04:13 +0200
committerJustin M. Keyes <justinkz@gmail.com>2015-06-12 00:04:36 -0400
commite53dda90bdb66c78978f75a1eb209f7b601a74f0 (patch)
tree823fe24d6a039431c406324ec81f22700b736d7c /src
parentbe66c0b3570a55671656959203bd5b824f77fde7 (diff)
downloadrneovim-e53dda90bdb66c78978f75a1eb209f7b601a74f0.tar.gz
rneovim-e53dda90bdb66c78978f75a1eb209f7b601a74f0.tar.bz2
rneovim-e53dda90bdb66c78978f75a1eb209f7b601a74f0.zip
memline: Don't call memmove() with a NULL argument in ml_add_stack(). #2802
When ml_add_stack() needs to increase the size of the empty stack, buf->b_ml.ml_stack is NULL and is used as argument in memmove(). This is undefined behaviour. Declaration of memmove() in string.h: extern void *memmove (void *__dest, const void *__src, size_t __n) __THROW __nonnull ((1, 2));
Diffstat (limited to 'src')
-rw-r--r--src/nvim/memline.c7
1 files changed, 2 insertions, 5 deletions
diff --git a/src/nvim/memline.c b/src/nvim/memline.c
index 62d1944c46..0e415b6e8c 100644
--- a/src/nvim/memline.c
+++ b/src/nvim/memline.c
@@ -2936,12 +2936,9 @@ static int ml_add_stack(buf_T *buf)
if (top == buf->b_ml.ml_stack_size) {
CHECK(top > 0, _("Stack size increases")); /* more than 5 levels??? */
- infoptr_T *newstack = xmalloc(sizeof(infoptr_T) *
- (buf->b_ml.ml_stack_size + STACK_INCR));
- memmove(newstack, buf->b_ml.ml_stack, (size_t)top * sizeof(infoptr_T));
- xfree(buf->b_ml.ml_stack);
- buf->b_ml.ml_stack = newstack;
buf->b_ml.ml_stack_size += STACK_INCR;
+ size_t new_size = sizeof(infoptr_T) * buf->b_ml.ml_stack_size;
+ buf->b_ml.ml_stack = xrealloc(buf->b_ml.ml_stack, new_size);
}
buf->b_ml.ml_stack_top++;
generated by cgit (git 2.34.1) at 2025-05-06 01:53:32 +0000