avmodel: avoid heap-buffer-overflow

use finished string to avoid a heap-buffer-overflow due to non terminated string Change-Id: Ic7d7fd45522e199977be9213359888b630d86543

avmodel: avoid heap-buffer-overflow
fc0ad97b · Sébastien Blin · 70a89500 · fc0ad97b
Commit fc0ad97b authored 2 years ago by Sébastien Blin
--- a/src/libclient/avmodel.cpp
+++ b/src/libclient/avmodel.cpp
@@ -602,11 +602,12 @@ AVModel::getListWindows() const
                    free(e);
                }
                if (replyProp.get()) {
-                    int valueLegth2 = xcb_get_property_value_length(replyProp.get());
-                    if (valueLegth2) {
-                        auto name = QString::fromUtf8(
-                            reinterpret_cast<char*>(xcb_get_property_value(replyProp.get())));
-                        name.truncate(valueLegth2);
+                    int v_size = xcb_get_property_value_length(replyProp.get());
+                    if (v_size) {
+                        auto v = std::string(reinterpret_cast<char*>(
+                                                 xcb_get_property_value(replyProp.get())),
+                                             v_size);
+                        auto name = QString::fromUtf8(v.c_str());
                        if (ret.find(name) != ret.end())
                            name += QString(" - 0x%1").arg(win[i], 0, 16);
                        ret.insert(name, QVariant(QString("0x%1").arg(win[i], 0, 16)));