Posted By Mike Ash on December 12th, 2008

We’ve updated RAOperationQueue to fix a buffer overflow bug which could lead to a crash. Download the new version of RAOperationQueue here.

Thanks go to David Smith and the Adium project for reporting this bug.

The bug was due to improper use of the mach_msg call. The old version of RAOperationQueue didn’t allocate space for a message trailer, which is required. Although we informed mach_msg that our buffer was small, it ignored us and wrote right off the end. Hilarity once again ensued.

For more info on what RAOperationQueue is and why you might want to use it, see RAOperationQueue, an open-source replacement for NSOperationQueue.