[Rspatial-devel] buffer overflow in sp fixed

Roger Bivand Roger.Bivand at nhh.no
Sat Jun 11 10:17:38 CEST 2011


Hi,

sp_0.9-83.tar.gz, rgeos_0.1-8.tar.gz, maptools_0.8-9.tar.gz (superceeds 
maptools_0.8-8.tar.gz) on incoming. The problem was in two unprotected 
BUFSIZ buffers in C code exported by sp and causing rgeos/maptools to 
crash when handling over-BUFSIZ comment strings; the temporary fixes were 
because I wasn't aware that code in rgeos was flattening polygons to suit 
GEOS 3.2.2, and so generating very long strings. These depend on each 
other, maptools on rgeos on sp. With these versions, BARD checks cleanly.

Best wishes,

Roger

PS: my ftp upload of rgeos_0.1-8.tar.gz got dropped on the client side 
(poor hotel connection in Italy), but the byte sizes agree. If it is 
corrupted:

$ openssl dgst -md5 rgeos_0.1-8.tar.gz
MD5(rgeos_0.1-8.tar.gz)= e907982c2183aa1223f8584b1cafae43

please let me know.

-- 
Roger Bivand
Economic Geography Section, Department of Economics, Norwegian School of
Economics and Business Administration, Helleveien 30, N-5045 Bergen,
Norway. voice: +47 55 95 93 55; fax +47 55 95 95 43
e-mail: Roger.Bivand at nhh.no



More information about the Rspatial-devel mailing list