Posted By Mike Ash on December 12th, 2008
We’ve updated RAOperationQueue to fix a buffer overflow bug which could lead to a crash. Download the new version of RAOperationQueue here.
Thanks go to David Smith and the Adium project for reporting this bug.
The bug was due to improper use of the
mach_msg call. The old version of RAOperationQueue didn’t allocate space for a message trailer, which is required. Although we informed
mach_msg that our buffer was small, it ignored us and wrote right off the end. Hilarity once again ensued.
For more info on what RAOperationQueue is and why you might want to use it, see RAOperationQueue, an open-source replacement for NSOperationQueue.