There's fairly old oversight in the SDP parsing code where it was forgotten to add a NULL termination byte to strings that are later handled using strlen(). This series fixes that oversight, with a few commits to better follow best practices on top. Found by running with address sanitizer. Jonas Dreßler (4): lib/sdp: Allocate strings in sdp_data_t with NULL termination lib/sdp: Don't assume uint8_t has size 1 lib/sdp: Use correct string length in sdp_copy_seq() lib/sdp: Pass size_t to sdp_get_string_attr() lib/sdp.c | 15 ++++++++------- lib/sdp_lib.h | 14 +++++++------- 2 files changed, 15 insertions(+), 14 deletions(-) -- 2.41.0
