View Issue Details

IDProjectCategoryView StatusLast Update
0003550GNUnetutil librarypublic2018-06-07 00:25
ReporteramatusAssigned ToChristian Grothoff 
PrioritynormalSeveritymajorReproducibilityhave not tried
Status closedResolutionfixed 
Product VersionSVN HEAD 
Target Version0.11.0pre66Fixed in Version0.11.0pre66 
Summary0003550: Possible integer overflow parsing metadata container.
Descriptionuint32_t ic;
uint32_t dataSize;
...
ic = ntohl (hdr.entries);
dataSize = ntohl (hdr.size);
if ((sizeof (struct MetaDataEntry) * ic) > dataSize)
{
  GNUNET_break_op (0);
  return NULL;
}
TagsNo tags attached.

Activities

Christian Grothoff

2014-10-09 16:10

manager   ~0008607

Fixed in SVN 34355.

Issue History

Date Modified Username Field Change
2014-10-09 04:09 amatus New Issue
2014-10-09 16:10 Christian Grothoff Note Added: 0008607
2014-10-09 16:10 Christian Grothoff Status new => resolved
2014-10-09 16:10 Christian Grothoff Fixed in Version => 0.11.0pre66
2014-10-09 16:10 Christian Grothoff Resolution open => fixed
2014-10-09 16:10 Christian Grothoff Assigned To => Christian Grothoff
2014-10-09 16:10 Christian Grothoff Target Version => 0.11.0pre66
2018-06-07 00:25 Christian Grothoff Status resolved => closed