patch 9.0.1499: using uninitialized memory with fuzzy matching Problem: Using uninitialized memory with fuzzy matching. Solution: Initialize the arrays used to store match positions.

commit: caf642c25de526229264cab9425e7c9979f3509b [log] [tgz]
author: Bram Moolenaar <Bram@vim.org> Sat Apr 29 21:38:04 2023 +0100
committer: Bram Moolenaar <Bram@vim.org> Sat Apr 29 21:38:04 2023 +0100
tree: dd6a1a9602b5e1adf9f939e28e13f9e33dbe6c51
parent: 58806c1553afa2924377f6445ac6ed8cb852f9ca [diff] [blame]
diff --git a/src/quickfix.c b/src/quickfix.c
index 13292e2..553ad45 100644
--- a/src/quickfix.c
+++ b/src/quickfix.c

@@ -6058,6 +6058,8 @@
     long	lnum;
     colnr_T	col;
     int		pat_len = (int)STRLEN(spat);
+    if (pat_len > MAX_FUZZY_MATCHES)
+	pat_len = MAX_FUZZY_MATCHES;
 
     for (lnum = 1; lnum <= buf->b_ml.ml_line_count && *tomatch > 0; ++lnum)
     {
@@ -6066,7 +6068,7 @@
 	{
 	    // Regular expression match
 	    while (vim_regexec_multi(regmatch, curwin, buf, lnum,
-			col, NULL) > 0)
+								col, NULL) > 0)
 	    {
 		// Pass the buffer number so that it gets used even for a
 		// dummy buffer, unless duplicate_name is set, then the
@@ -6112,6 +6114,7 @@
 	    int_u   sz = ARRAY_LENGTH(matches);
 
 	    // Fuzzy string match
+	    CLEAR_FIELD(matches);
 	    while (fuzzy_match(str + col, spat, FALSE, &score, matches, sz) > 0)
 	    {
 		// Pass the buffer number so that it gets used even for a
commit	caf642c25de526229264cab9425e7c9979f3509b	[log] [tgz]
author	Bram Moolenaar <Bram@vim.org>	Sat Apr 29 21:38:04 2023 +0100
committer	Bram Moolenaar <Bram@vim.org>	Sat Apr 29 21:38:04 2023 +0100
tree	dd6a1a9602b5e1adf9f939e28e13f9e33dbe6c51
parent	58806c1553afa2924377f6445ac6ed8cb852f9ca [diff] [blame]