Fixed potential invalid memory access when reading code fragments

doxygen · doxygen · commit bdaa81ef589b · 2024-09-17T20:12:40.000+02:00
diff --git a/src/definition.cpp b/src/definition.cpp
@@ -843,6 +843,10 @@ bool readCodeFragment(const QCString &fileName,bool isMacro,
       {
         found=TRUE;
       }
+      else if (c==0)
+      {
+        break;
+      }
     }
     //printf(" -> readCodeFragment(%s,%d,%d) lineNr=%d\n",fileName,startLine,endLine,lineNr);
     if (found)
@@ -871,11 +875,12 @@ bool readCodeFragment(const QCString &fileName,bool isMacro,
         int size_read=0;
         do
         {
-          // read up to maxLineLength-1 bytes, the last byte being zero
+          // read up to blockSize-1 non-zero characters
           int i=0;
-          while ((c=*p++) && i<blockSize-1)
+          while ((c=*p) && i<blockSize-1)
           {
             lineStr[i++]=c;
+            p++;
             if (c=='\n') break; // stop at end of the line
           }
           lineStr[i]=0;

Original file line number	Diff line number	Diff line change
`@@ -843,6 +843,10 @@ bool readCodeFragment(const QCString &fileName,bool isMacro,`
`843`	`843`	`{`
`844`	`844`	`found=TRUE;`
`845`	`845`	`}`
	`846`	`+ else if (c==0)`
	`847`	`+ {`
	`848`	`+ break;`
	`849`	`+ }`
`846`	`850`	`}`
`847`	`851`	`//printf(" -> readCodeFragment(%s,%d,%d) lineNr=%d\n",fileName,startLine,endLine,lineNr);`
`848`	`852`	`if (found)`
`@@ -871,11 +875,12 @@ bool readCodeFragment(const QCString &fileName,bool isMacro,`
`871`	`875`	`int size_read=0;`
`872`	`876`	`do`
`873`	`877`	`{`
`874`		`- // read up to maxLineLength-1 bytes, the last byte being zero`
	`878`	`+ // read up to blockSize-1 non-zero characters`
`875`	`879`	`int i=0;`
`876`		`- while ((c=*p++) && i<blockSize-1)`
	`880`	`+ while ((c=*p) && i<blockSize-1)`
`877`	`881`	`{`
`878`	`882`	`lineStr[i++]=c;`
	`883`	`+ p++;`
`879`	`884`	`if (c=='\n') break; // stop at end of the line`
`880`	`885`	`}`
`881`	`886`	`lineStr[i]=0;`