Possible out of bound array access
Submitted by Hong Li
Link to original bug (#738542)
Description
1360 static void type_node_add_iface_entry_W (TypeNode *node, GType iface_type, IFaceEntry *parent_entry)
....
1451 if (parent_entry)
1452 {
1453 for (i = 0; i < node->
n_children; i++)
1454 type_node_add_iface_entry_W (lookup_type_node_I (node->children[i]), iface_type, &entries->entry[i]);
1455 }
}
In Line 1454, the entries->entry[] and node->children[] have different array sizes. Shound't entries->entry[i] at line 1544 be parent_entry?
Version: 2.36.x