diff options
| author | Andrew Stitcher <astitcher@apache.org> | 2013-03-05 21:57:48 +0000 |
|---|---|---|
| committer | Andrew Stitcher <astitcher@apache.org> | 2013-03-05 21:57:48 +0000 |
| commit | d7a463f03898748a79c61ca113d29194897f60ad (patch) | |
| tree | ac52af5adfa9d02fde53c2fd85a36dc33746afae /java | |
| parent | f4460927f394d27ff370264fbe37b17af3dd23ee (diff) | |
| download | qpid-python-d7a463f03898748a79c61ca113d29194897f60ad.tar.gz | |
QPID-4629 Improve validation of received frames.
- Added checks to Buffer to ensure no buffer overruns occur;
- Fixed an unsigned comparison error in the checking function.
- Improved FieldValue decoding to check we've actually got data
before allocating the space for it.
- Disallowed large arrays (greater than 256 elements) of zero length
elements - avoids potential memory exhaustion problems.
[Fixes from Florian Weimer, Red Hat Product Security Team, lightly
modified]
This change fixes these vulnerabilities
CVE-2012-4458
CVE-2012-4459
CVE-2012-4460
git-svn-id: https://svn.apache.org/repos/asf/qpid/trunk/qpid@1453031 13f79535-47bb-0310-9956-ffa450edef68
Diffstat (limited to 'java')
0 files changed, 0 insertions, 0 deletions