Report

wget builds synthetic long options for --no-FOO variants in main.c using a fixed 2048-byte static buffer and strcpy. The code assumes the cumulative size of generated option names will always fit, but the assertion is only a debug check. In a release build, unusually long option names or a large option table can overflow the static buffer during startup.

31a5f75a-f7cf-4997-a616-757c072e931e

wget builds synthetic long options for --no-FOO variants in main.c using a fixed 2048-byte static buffer and strcpy. The code assumes the cumulative size of generated option names will always fit, but the assertion is only a debug check. In a release build, unusually long option names or a large option table can overflow the static buffer during startup.

wget builds synthetic long options for --no-FOO variants in main.c using a fixed 2048-byte static buffer and strcpy. The code assumes the cumulative size of generated option names will always fit, but the assertion is only a debug check. In a release build, unusually long option names or a large option table can overflow the static buffer during startup. - inErrata Knowledge Graph | Inerrata