shadowfacts
/
tree-sitter-html
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
tree-sitter-html/src
History
Phil Turnbull 76f96c5979
Correctly cast `name_length` 
`buffer[i++]` is a `signed char` so this cast does not correctly handle
negative values. If a custom tag has a length greater than 128 then
`buffer[i++]` is negative and so the `(uint16_t)` cast will cast it to a large
unsigned integer. This causes an out-of-bound read when reading the tag name.

We need to cast `name_length` to a `uint8_t` first, then widen to a `uint16_t`.
 		2019-02-26 12:05:01 -05:00
..
tree_sitter Regenerate 2019-02-19 11:11:35 -08:00
binding.cc Initial commit 2018-06-11 16:59:22 -07:00
grammar.json Regenerate 2019-02-19 11:11:35 -08:00
highlights.json Regenerate 2019-02-19 11:11:35 -08:00
injections.json Regenerate 2019-02-19 11:11:35 -08:00
parser.c Regenerate 2019-02-19 11:11:35 -08:00
scanner.cc Correctly cast `name_length` 2019-02-26 12:05:01 -05:00
tag.h Make distinct nodes for style/script, set up injection 2018-12-14 17:43:41 -08:00