[CDRIVER-2339] dbpointer not checking bounds of string Created: 02/Nov/17 Updated: 28/Oct/23 Resolved: 02/Nov/17 |
|
| Status: | Closed |
| Project: | C Driver |
| Component/s: | libbson |
| Affects Version/s: | None |
| Fix Version/s: | 1.9.0 |
| Type: | Bug | Priority: | Minor - P4 |
| Reporter: | Kevin Albertson | Assignee: | Kevin Albertson |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||
| Description |
|
Validating the string in a DBPOINTER type element does not catch all invalid lengths of the string, resulting in possibly dereferencing past the BSON bounds. |
| Comments |
| Comment by Githook User [ 02/Nov/17 ] |
|
Author: {'name': 'Kevin Albertson', 'username': 'kevinAlbs', 'email': 'kevin.albertson@10gen.com'}Message: |