> ../../common/unit.c:2475:13: runtime error: index -1 out of bounds for type 'const struct unit_list_link *[5]'
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior ../../common/unit.c:2475:13 in

This was with S3_1.

Ticket History (3/8 Histories)

2023-04-22 19:29 Updated by: cazfi

New Ticket "cargo_iter_next() uses -1 array index" created

2023-04-22 19:42 Updated by: cazfi

File 0024-Fix-cargo_iter_next-out-of-bounds-read.patch (File ID: 12246) is attached

2023-04-22 19:43 Updated by: cazfi

File 0046-Fix-cargo_iter_next-out-of-bounds-read.patch (File ID: 12247) is attached

2023-04-22 19:45 Updated by: cazfi

負責人 Update from (無) to cazfi
處理結果 Update from 無 to Accepted
里程碑 Update from (無) to 3.0.8 (closed)

評語

The difference between attached patches is that main / S3_2 one adds an assert that more stable branches patch does not.

2023-04-23 02:57 Updated by: cazfi

評語

S3_1/S3_0 patch also for S2_6.

2023-04-23 03:52 Updated by: cazfi

評語

Likely duplicate -> #47661

2023-04-26 11:52 Updated by: cazfi

狀態 Update from 開啟 to 關閉
處理結果 Update from Accepted to 修正

2023-05-05 21:44 Updated by: alain_bkr

評語

this does not fix the problem

#47982 has the complete fix

(Edited, 2023-05-05 21:46 Updated by:

alain_bkr)

Attachment File List

0024-Fix-cargo_iter_next-out-of-bounds-read.patch(1KB)
- main, S3_2
0046-Fix-cargo_iter_next-out-of-bounds-read.patch(1KB)
- S3_1, S3_0

Freeciv

待辦事項 #47900 待辦事項列表 新增待辦事項 RSS

cargo_iter_next() uses -1 array index 啟用日期: 2023-04-22 19:29 最後更新: 2023-05-05 21:44 監視 ON OFF

細節

Ticket History (3/8 Histories) Show older Histories