Buffer overflow on client when delivering events. [CORE2437] #2853
Labels
affect-version: 1.5.4
affect-version: 1.5.5
affect-version: 2.0.0
affect-version: 2.0.1
affect-version: 2.0.2
affect-version: 2.0.3
affect-version: 2.0.4
affect-version: 2.0.5
affect-version: 2.1.0
affect-version: 2.1.1
affect-version: 2.1.2
affect-version: 2.5 Alpha 1
affect-version: 2.5 Beta 1
component: api / client library
component: engine
fix-version: 2.0.6
fix-version: 2.1.3
fix-version: 2.5 Beta 2
priority: major
type: bug
Submitted by: @AlexPeshkoff
Is related to CORE2272
If for any reason badly formed list of events is used in isc_events_que(), it's sent to server and processed without any sanity checks (for server reads data after the end of passed buffer). As a result event with name, longer than expected, can be returned to client, passed to callback routine and cause BOF on client.
Commits: f6dae79 0b6e7f1 cd54e55
The text was updated successfully, but these errors were encountered: