[Users] [Bug 3563] New: URL parser will read out of bounds when closing bracket is missing in get_url_part

Sun Nov 15 21:41:07 CET 2015

http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=3563

            Bug ID: 3563
           Summary: URL parser will read out of bounds when closing
                    bracket is missing in get_url_part
    Classification: Unclassified
           Product: Claws Mail
           Version: other
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P3
         Component: Other
          Assignee: users at lists.claws-mail.org
          Reporter: hanno at hboeck.de

Created attachment 1601
  -->
http://www.thewildbeast.co.uk/claws-mail/bugzilla/attachment.cgi?id=1601&action=edit
patch / fix

The URL parser code in mainwindow.c will read beyond the bounds of its input
buffer if an URL which is missing a closing bracket is passed.

This can happen e.g. when the List-Archive header is broken (which currently
seems to be the case with Google Groups due to a bug there).

See attached patch which should fix this. This was found with address
sanitizer.

I'll also attach the address sanitizer error message and a minimal sample input
mail that will trigger this bug.

-- 
You are receiving this mail because:
You are the assignee for the bug.