Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Not Evaluated
Fix Version/s: 5.9.2
Affects Version/s: 5.9.1
Component/s: Core: Other, Documentation
Labels:
None
Environment:
Windows 7 x64

Commits:
b7bcd03d194495f3e7230e0cd757b04641c633d9

Description

At least on Windows, it appears that the resulting shared memory segment created by `QSharedMemory::create` can be larger than the requested size due to alignment, and `QSharedMemory::size` returns the actual size of the shared memory segment instead of the requested size.

However, this is not stated in the documentation at all.

Users could have the false assumption that `QSharedMemory::size` returns the requested size and use it with functions like `memcpy` with another buffer, leading to buffer overflow.

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Thiago Macieira

Reporter:: Alvin Wong

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 13 Aug '17 07:48

Updated:: 13 Aug '17 23:35

Resolved:: 13 Aug '17 23:35

Gerrit Reviews

There are no open Gerrit changes

Show There is 1 closed Gerrit change

Hide There is 1 closed Gerrit change

Doc: indicate the QSharedMemory::size() that the size may be bigger: Gerrit Review: