summaryrefslogtreecommitdiffstats
path: root/fuzz/xplist-crashes
diff options
context:
space:
mode:
authorGravatar Nikias Bassen2017-02-03 23:33:07 +0100
committerGravatar Nikias Bassen2017-02-03 23:33:07 +0100
commitfc047e6de9d7afa3b168fd2c4d1d0884788e7086 (patch)
tree029ca9f6a612affb2d8cea38b19176384ca59317 /fuzz/xplist-crashes
parent3ca4f0aeecfee240bfb37706dc37afe623d00512 (diff)
downloadlibplist-fc047e6de9d7afa3b168fd2c4d1d0884788e7086.tar.gz
libplist-fc047e6de9d7afa3b168fd2c4d1d0884788e7086.tar.bz2
bplist: Prevent OOB read when parsing data/string/array/dict size nodes
As reported in #91, the code that will read the big endian integer value of variable size did not check if the actual number of bytes is still withing the range of the actual plist data. This commit fixes the issue with proper bounds checking.
Diffstat (limited to 'fuzz/xplist-crashes')
0 files changed, 0 insertions, 0 deletions