From fe64ca3771029b928da55c9b7bf2e217e6e55a5f Mon Sep 17 00:00:00 2001 From: "aquanull@gmail.com" Date: Mon, 24 Dec 2018 12:01:25 +0800 Subject: [PATCH] Fixed the ancient buffer overflows in Memory Watch. --- src/drivers/win/memview.cpp | 4 +- src/drivers/win/memwatch.cpp | 101 ++++++++++++++++++----------------- 2 files changed, 54 insertions(+), 51 deletions(-) diff --git a/src/drivers/win/memview.cpp b/src/drivers/win/memview.cpp index 4344a4c0..7ce539a4 100644 --- a/src/drivers/win/memview.cpp +++ b/src/drivers/win/memview.cpp @@ -2242,7 +2242,7 @@ BOOL CALLBACK MemFindCallB(HWND hwndDlg, UINT uMsg, WPARAM wParam, LPARAM lParam break; case WM_CLOSE: case WM_QUIT: - GetDlgItemText(hwndDlg,IDC_MEMVIEWFIND_WHAT,FindTextBox,59); + GetDlgItemText(hwndDlg,IDC_MEMVIEWFIND_WHAT,FindTextBox,60); DestroyWindow(hwndDlg); hMemFind = 0; hwndDlg = 0; @@ -2302,7 +2302,7 @@ void FindNext(){ unsigned char data[60]; int datasize = 0, i, j, inputc = -1, found; - if(hMemFind) GetDlgItemText(hMemFind,IDC_MEMVIEWFIND_WHAT,str,59); + if(hMemFind) GetDlgItemText(hMemFind,IDC_MEMVIEWFIND_WHAT,str,60); else strcpy(str,FindTextBox); for(i = 0;str[i] != 0;i++){ diff --git a/src/drivers/win/memwatch.cpp b/src/drivers/win/memwatch.cpp index 96c2321d..b2a203d1 100644 --- a/src/drivers/win/memwatch.cpp +++ b/src/drivers/win/memwatch.cpp @@ -72,12 +72,12 @@ extern void RemoveRecentItem(unsigned int which, char**bufferArray, const unsign //Ram change monitor globals----------------------------------- bool RamChangeInitialize = false; //Set true during memw WM_INIT const int MAX_RAMMONITOR = 4; //Maximum number of Ram values that can be monitored -char editboxnow[MAX_RAMMONITOR][5]; //current address put into editbox 00 -char editboxlast[MAX_RAMMONITOR][5]; //last address put into editbox (1 frame ago) +char editboxnow[MAX_RAMMONITOR][8]; //current address put into editbox 00 +char editboxlast[MAX_RAMMONITOR][8]; //last address put into editbox (1 frame ago) int editlast[MAX_RAMMONITOR]; //last address value (1 frame ago) int editnow[MAX_RAMMONITOR]; //current address value unsigned int editcount[MAX_RAMMONITOR]; //Current counter value -char editchangem[MAX_RAMMONITOR][5]; //counter converted to string +char editchangem[MAX_RAMMONITOR][12]; //counter converted to string //------------------------------------------------- @@ -286,15 +286,15 @@ void UpdateMemWatch() //Display blue if address is frozen if (FrozenAddressCount && FrozenAddresses.size()) { - for (unsigned int x = 0; x < FrozenAddressCount; x++) - { - if (mwrec.addr == FrozenAddresses[x]) + for (unsigned int x = 0; x < FrozenAddressCount; x++) { - //SetTextColor(hdc,RGB(0,0,255)); - SetTextColor(hdc,GetSysColor(COLOR_HIGHLIGHT)); + if (mwrec.addr == FrozenAddresses[x]) + { + //SetTextColor(hdc,RGB(0,0,255)); + SetTextColor(hdc,GetSysColor(COLOR_HIGHLIGHT)); + } } } - } char* text; if(mwrec.valid && GameInfo) @@ -336,7 +336,6 @@ void UpdateMemWatch() TextOut(hdc,0,0,text,strlen(text)); SetTextColor(hdc,RGB(0,0,0)); } - } } @@ -388,14 +387,14 @@ bool iftextchanged() int i,j; for(i=0;i