diff options
| author | Andrew Stitcher <astitcher@apache.org> | 2013-03-05 21:57:48 +0000 |
|---|---|---|
| committer | Andrew Stitcher <astitcher@apache.org> | 2013-03-05 21:57:48 +0000 |
| commit | 11bea917a9992f36b944c82de21c74abc45840ff (patch) | |
| tree | ac52af5adfa9d02fde53c2fd85a36dc33746afae /java/client | |
| parent | 2fb83ce0133fd9ced8406d2c45a526ab0811c7b8 (diff) | |
| download | qpid-python-11bea917a9992f36b944c82de21c74abc45840ff.tar.gz | |
QPID-4629 Improve validation of received frames.
- Added checks to Buffer to ensure no buffer overruns occur;
- Fixed an unsigned comparison error in the checking function.
- Improved FieldValue decoding to check we've actually got data
before allocating the space for it.
- Disallowed large arrays (greater than 256 elements) of zero length
elements - avoids potential memory exhaustion problems.
[Fixes from Florian Weimer, Red Hat Product Security Team, lightly
modified]
This change fixes these vulnerabilities
CVE-2012-4458
CVE-2012-4459
CVE-2012-4460
git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk/qpid@1453031 13f79535-47bb-0310-9956-ffa450edef68
Diffstat (limited to 'java/client')
0 files changed, 0 insertions, 0 deletions