Loading...

XML

Word

Printable

Type: Bug
Resolution: Incomplete
Priority: Not Evaluated
Fix Version/s: None
Affects Version/s: 6.12
Component/s: Core: I/O
Labels:
- NMI
- RNMI

Platform/s:

Linux/X11

In the QContainerImplHelper::mid function (qtbase/src/corelib/tools/qarraydata.h:189), there is an integer overflow issue when processing INT_MIN as the position parameter.Specific Issue:When position = INT_MIN and length = INT_MAX, the calculation of length + position causes integer overflow:

On 32-bit systems: INT_MIN = -2147483648, INT_MAX = 2147483647

length + position = 2147483647 + (-2147483648) = -1

This leads to unexpected behavior and may return incorrect results.

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Assignee:: Thiago Macieira

Reporter:: mengci cai

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 08 Aug '25 07:02

Updated:: 26 Aug '25 02:16

Resolved:: 11 Aug '25 06:20

There are no open Gerrit changes

Show There is 1 closed Gerrit change

Hide There is 1 closed Gerrit change

corelib: add boundary condition test for QString::mid with extreme values: Gerrit Review:

Details

Description

Attachments

Gerrit Reviews

Activity

People

Dates

Gerrit Reviews