Stack corruption when printing edicts
alexey-lysiuk opened this issue · comments
There is a potential write outside of stack buffer inside PR_ValueString()
function.
To reproduce, load Oozing Blasphemy with Arcane Dimensions 1.81, and do edicts
in console.
It may crash at the following line
Line 321 in 33085c5
Line 312 in 33085c5
Should it allocate a temporary buffer on the heap if stack one is too small?
Or, is it better to just use q_snprintf()
to output only value's part?
The wad
entry is ridiculously long - q_snprintf is the way to go: will apply this patch shortly
Should be fixed by commit 1c970af