[vdr] Re: Coredump - vdr 1.3.9 at eit.c:205

[Bernd Oefinger <bernd@oefinger.de>]

On Friday 04 June 2004 23:33, Philip Lawatsch wrote:
> Klaus Schmidinger wrote:
> > Well, IIRC the Title and ShortText can by definition only be up to 256
> > bytes long (including the terminating 0). But of course we could use a
> >
> >   char buffer[4096];
> >
> > for both cases.
>
> Well, I'm just waiting till someone sends epg data to root a lot of vdr
> boxes using some neat buffer overflows.
> Providing how many vdrs are running as root (I'm sure there are a lot)
> I'd really suggest to get rid of all auto variable buffers and use
> buffers in the heap instead.
It is not that bad if vdr crashes instantly due to stack corruption. Otherwise 
only the heap gets screwed up and VDR may crash randomly and timely not close 
to the corruption and the bug might stays in for months annoying users.

> . or i'm just too paranoid :)
Hmmmm - Yes ;-)

Bernd