[GitHub] [thrift] fishy opened a new pull request #2258: THRIFT-5294: Fix panic in go TSimpleJSONProtocol

fishy opened a new pull request #2258: URL: https://github.com/apache/thrift/pull/2258 Client: go In go library's TSimpleJSONProtocol and TJSONProtocol implementations, we use slices as stacks for context info, but didn't do proper boundary check when peeking/popping, result in

[jira] [Created] (THRIFT-5294) Go: TSimpleJSONProtocol could panic on WriteMessageEnd without matching WriteMessageBegin

Yuxuan Wang created THRIFT-5294: --- Summary: Go: TSimpleJSONProtocol could panic on WriteMessageEnd without matching WriteMessageBegin Key: THRIFT-5294 URL: https://issues.apache.org/jira/browse/THRIFT-5294

[jira] [Commented] (THRIFT-5293) Blackduck shows the security vulnerabilities in libfb303:0.9.3

[ https://issues.apache.org/jira/browse/THRIFT-5293?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17211651#comment-17211651 ] Max commented on THRIFT-5293: - Suraj, yes, please contact Blackduck support (of course make sure you've

[jira] [Commented] (THRIFT-5293) Blackduck shows the security vulnerabilities in libfb303:0.9.3

[ https://issues.apache.org/jira/browse/THRIFT-5293?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17211592#comment-17211592 ] suraj misra commented on THRIFT-5293: - Thankyou Max for your information as well as your patience