a4ca24c4fe316bc102b9fa52f808d206ab8cd24b - third_party/libplist

commit	a4ca24c4fe316bc102b9fa52f808d206ab8cd24b	[log] [tgz]
author	Filippo Bigarella <filippobigarella@gmail.com>	Thu Nov 10 01:31:23 2016 +0100
committer	Nikias Bassen <nikias@gmx.li>	Thu Nov 10 01:31:23 2016 +0100
tree	884d0049709a7e011a28b3e7a8c529c262de676a
parent	1ae55728f427532234be85a90322e4a3c77b4074 [diff]

bplist: Prevent out-of-bounds read in plist_from_bin() when parsing offset_table

offset_table_index is read from the file, so we have full control over it.
This means we can point offset_table essentially anywhere we want, which can
lead to an out-of-bounds read when it will be used later on.

src/bplist.c[diff]

1 file changed

tree: 884d0049709a7e011a28b3e7a8c529c262de676a

cython/
include/
libcnary/
m4/
src/
test/
tools/
.gitignore
AUTHORS
autogen.sh
configure.ac
COPYING
COPYING.LESSER
doxygen.cfg.in
Makefile.am
NEWS
README