Heap buffer overflow in dssp.cpp

Question

Heap buffer overflow in dssp.cpp

Closed this issue 3 years ago · 1 comments

There is a heap overflow bug in dssp.cpp:

If stop == True then since bool stop = t == dssp.end(); it means that t == dssp.end() and therefore accessing t->ss() will cause a heap buffer overflow.

I think the solution is to move:

if (stop)
  break;

above the if (lastSS != t->ss()) check:

if (stop) {
  break;
}

if (lastSS != t->ss()) {
  st = t;
  lastSS = t->ss();
}

Answer 1 · 2022-05-11T11:54:48.000Z

Thanks for pointing this out. It is fixed now.