[CDRIVER-2339] dbpointer not checking bounds of string Created: 02/Nov/17  Updated: 28/Oct/23  Resolved: 02/Nov/17

Status: Closed
Project: C Driver
Component/s: libbson
Affects Version/s: None
Fix Version/s: 1.9.0

Type: Bug Priority: Minor - P4
Reporter: Kevin Albertson Assignee: Kevin Albertson
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Problem/Incident

 Description   

Validating the string in a DBPOINTER type element does not catch all invalid lengths of the string, resulting in possibly dereferencing past the BSON bounds.



 Comments   
Comment by Githook User [ 02/Nov/17 ]

Author:

{'name': 'Kevin Albertson', 'username': 'kevinAlbs', 'email': 'kevin.albertson@10gen.com'}

Message: CDRIVER-2339 fix dbpointer string validation
Branch: master
https://github.com/mongodb/libbson/commit/3c067ba0862a2043bdb00143ad6937f64e90e952

Generated at Wed Feb 07 21:14:56 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.