From 9fe25eae4a185aa6c6959b5b589222cfe491e59c Mon Sep 17 00:00:00 2001 From: Alexandre Julliard Date: Fri, 16 Sep 2011 19:36:52 +0200 Subject: [PATCH] vbscript: Fix a memory allocation size to avoid overflows. --- dlls/vbscript/vbdisp.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dlls/vbscript/vbdisp.c b/dlls/vbscript/vbdisp.c index c1eba2382c8..14fb8b06350 100644 --- a/dlls/vbscript/vbdisp.c +++ b/dlls/vbscript/vbdisp.c @@ -398,7 +398,7 @@ HRESULT create_vbdisp(const class_desc_t *desc, vbdisp_t **ret) { vbdisp_t *vbdisp; - vbdisp = heap_alloc_zero(sizeof(*vbdisp) + (desc->prop_cnt-1)*sizeof(VARIANT)); + vbdisp = heap_alloc_zero( FIELD_OFFSET( vbdisp_t, props[desc->prop_cnt] )); if(!vbdisp) return E_OUTOFMEMORY;