|
|
|
|
|
|
by mtlmtlmtlmtl
1115 days ago
|
|
|
Your allocation macro can lead to heap underflows if the multiplication wraps around. Which can definitely be exploitable. You should either add overflow checking to the macro or even better just use the damn libc api and call calloc. Or if you really insist on avoiding zeroing overhead, there's reallocarray(NULL, ...) if you use a reasonably modern libc. |
|
|