On Sat, Jul 15, 2000 at 04:32:23PM +0200, Marcus Meissner wrote:
> Hi,
>
> While debugging the D2 installer I came across this gem. If you run with
> -debugmsg +edit, the D2 installer will try to display an Edit control with
> 15 KB text. +edit will try to print it in EDIT_WM_SetText and corrupt the
> heap.
>
> Yes. I have wrapped the patched line below with two
> assert(HeapValidate(GetProcessHeap(),0,0));
> and the second one triggered.
>
> I do not know how it can corrupt the heap here, since the arguments are
> passed to vprintf().
>
> Consider me puzzled.
On the second hand, consider misc/debugstr.c broken.
dbg_vprintf() uses only 500 byte as buffer and horrible fails with 15k of
unwrapped string data.
Ciao, Marcus
