updated for version 7.3.040 Problem: Comparing strings while ignoring case goes beyond end of the string when there are illegal bytes. (Dominique Pelle) Solution: Explicitly check for illegal bytes.

commit: c395a3aac26875fd494a98b0a2221a414d9076d7 [log] [tgz]
author: Bram Moolenaar <Bram@vim.org> Wed Oct 27 13:37:44 2010 +0200
committer: Bram Moolenaar <Bram@vim.org> Wed Oct 27 13:37:44 2010 +0200
tree: eaea6f4a0168e811ece59080894633f0fe6d974f
parent: fc3c83e47e22ae510fa5ade38e872ad6d8a21a0a [diff] [blame]
diff --git a/src/mbyte.c b/src/mbyte.c
index 9c0b187..61a7d8b 100644
--- a/src/mbyte.c
+++ b/src/mbyte.c

@@ -3124,6 +3124,9 @@
 		/* If one of the two characters is incomplete return -1. */
 		if (incomplete || i + utf_byte2len(s2[i]) > n)
 		    return -1;
+		/* Don't case-fold illegal bytes or truncated characters. */
+		if (utf_ptr2len(s1 + i) < l || utf_ptr2len(s2 + i) < l)
+		    return -1;
 		cdiff = utf_fold(utf_ptr2char(s1 + i))
 					     - utf_fold(utf_ptr2char(s2 + i));
 		if (cdiff != 0)
commit	c395a3aac26875fd494a98b0a2221a414d9076d7	[log] [tgz]
author	Bram Moolenaar <Bram@vim.org>	Wed Oct 27 13:37:44 2010 +0200
committer	Bram Moolenaar <Bram@vim.org>	Wed Oct 27 13:37:44 2010 +0200
tree	eaea6f4a0168e811ece59080894633f0fe6d974f
parent	fc3c83e47e22ae510fa5ade38e872ad6d8a21a0a [diff] [blame]