[Rpm-maint] [rpm-software-management/rpm] Harden against crafted inputs (#1471)
Demi Marie Obenour
notifications at github.com
Wed Dec 30 04:17:31 UTC 2020
@DemiMarie pushed 5 commits.
5774a927b28c2056aed9bd9fc3e39605e0b071de Enable hardening flags where available
2b86b349a2f66f28a66080ddc9d8f6e76f9acbfb Check that len is in range before using it
69a79e4a240e6b82d537d6fc76b57ace55a0e17a Avoid incrementing a pointer past the end
ba0d0a02520737ac0bb2a0b68d8ebfd9457efb17 Check that ‘einfo.offset’ is reasonable
e74205f450f46917225e1b83da5e1aab1d58eb28 Require signature headers to be contiguous
--
You are receiving this because you are subscribed to this thread.
View it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1471/files/86f8143ce0e14dbe5c173b75eb8122d81676c886..e74205f450f46917225e1b83da5e1aab1d58eb28
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20201229/0fe370ab/attachment-0001.html>
More information about the Rpm-maint
mailing list