2011-10-07, 17:27(+03), Török Edwin: [...] >>- ctx.fmap = cli_calloc(sizeof(fmap_t *), ctx.engine->maxreclevel + 2); >>+ ctx.fmap = cli_calloc(ctx.engine->maxreclevel + 3, sizeof(fmap_t *)); [...] >> Here recursion not increased but magic_scandesc reentered somehow via >> cli_scanraw() -> ??? -> cli_bcapi_extract_new(). [...] > There were only 2 bytecodes using that API, so I dropped them > until the API is fixed in libclamav (at which point I will > readd them). > > Bytecode.cvd 146 and 147 should not crash anymore, can you > confirm (once you get the update via freshclam, in ~15m)? [...]
Thanks Török, I do confirm it no longer crashes. BTW, though my WA above is not the right fix, it does fix the order of arguments to the cli_calloc(nmemb,size) -- Stephane _______________________________________________ http://lurker.clamav.net/list/clamav-devel.html Please submit your patches to our Bugzilla: http://bugs.clamav.net
