[
https://issues.apache.org/jira/browse/PROTON-1249?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15357913#comment-15357913
]
ASF subversion and git services commented on PROTON-1249:
---------------------------------------------------------
Commit 0c92828864118517f8d8a23a2801da82852cf36c in qpid-proton's branch
refs/heads/master from [~dnwe]
[ https://git-wip-us.apache.org/repos/asf?p=qpid-proton.git;h=0c92828 ]
PROTON-1249: Safeguard type initialisations.
In #readValue() for ArrayType, BinaryType, ListType and MapType
decoding, if the 'count' specified is very large then it is likely to
trigger an OutOfMemoryException. As these can come from an external data
source, during the SASL init for example, there is a potential for a
denial of service. The fix is to throw an IllegalArgumentException if
the count value is larger than the amount of data available in the
received bytes.
> proton-j: unsafe type initialisations
> -------------------------------------
>
> Key: PROTON-1249
> URL: https://issues.apache.org/jira/browse/PROTON-1249
> Project: Qpid Proton
> Issue Type: Bug
> Components: proton-j
> Affects Versions: 0.12.2
> Reporter: Dominic Evans
> Assignee: Dominic Evans
> Labels: proton-j, security
>
> In #readValue() for ArrayType, BinaryType, ListType and MapType
> decoding, if the 'count' specified is very large then it is likely to
> trigger an OutOfMemoryException. As these can come from an external data
> source, during the SASL init for example, there is a potential for a
> denial of service. The fix is to throw an IllegalArgumentException if
> the count value is larger than the amount of data available in the
> received bytes.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@qpid.apache.org
For additional commands, e-mail: dev-h...@qpid.apache.org
