zchunk/sources at a04907a0506b6dc38780738c19b75ba6e5e268bf - zchunk - AlmaLinux OS Foundation Git Server

rpms/zchunk

Jonathan Dieter 5950ea2a8e Fix a few low severity security bugs

- An off-by-one overflow when reading compressed integers from a
   malicious zchunk file
 - Error handling being skipped when the number of bytes read doesn't
   match what's expected
 - Not freeing memory when attempting to reallocate to size 0

Signed-off-by: Jonathan Dieter <jdieter@gmail.com>

2023-04-04 21:35:44 +01:00

2 lines

160 B

Plaintext

Raw Blame History

SHA512 (zchunk-1.3.1.tar.gz) = 5eec3ee084f3192291f5956dc797275986ebaa004df580be73de18ff22a781b6c5362bedc6263c9ae3569e5fa12cf5225d87aed7ec4ddfa6210f5c92763566e5