Tag: Branch: Tree: b9b8413cfd

coverity_scan

main

v1.23

v1.24

v1.25

v1.26

v1.27

v1.28

v1.29

v1.30

v1.31

v1.32

v1.33

v1.34

c-ares-1_17_0

c-ares-1_2_0

cares-1_10_0

cares-1_11_0

cares-1_11_0-rc1

cares-1_12_0

cares-1_13_0

cares-1_14_0

cares-1_15_0

cares-1_16_0

cares-1_16_1

cares-1_17_1

cares-1_17_2

cares-1_18_0

cares-1_18_1

cares-1_19_0

cares-1_19_1

cares-1_1_0

cares-1_20_0

cares-1_20_1

cares-1_21_0

cares-1_22_0

cares-1_22_1

cares-1_23_0

cares-1_24_0

cares-1_25_0

cares-1_26_0

cares-1_27_0

cares-1_28_0

cares-1_28_1

cares-1_29_0

cares-1_2_1

cares-1_3_1

cares-1_3_2

cares-1_4_0

cares-1_5_0

cares-1_5_1

cares-1_5_2

cares-1_5_3

cares-1_6_0

cares-1_7_0

cares-1_7_1

cares-1_7_2

cares-1_7_3

cares-1_7_4

cares-1_7_5

cares-1_8_0

cares-1_9_0

cares-1_9_1

curl-7_10_8

curl-7_11_0

curl-7_11_1

curl-7_12_0

curl-7_12_1

curl-7_12_2

curl-7_13_0

curl-7_13_1

curl-7_13_2

curl-7_14_0

curl-7_14_1

curl-7_15_0

curl-7_15_1

curl-7_15_3

curl-7_15_4

curl-7_15_5

curl-7_15_6-prepipeline

curl-7_16_0

curl-7_16_1

curl-7_16_2

curl-7_16_3

curl-7_16_4

curl-7_17_0

curl-7_17_1

curl-7_18_0

curl-7_18_1

curl-7_18_2

curl-7_19_0

curl-7_19_2

curl-7_19_3

curl-7_19_4

curl-7_19_5

curl-7_19_6

curl-7_19_7

curl-7_20_0

v1.30.0

v1.31.0

v1.32.0

v1.32.1

v1.32.2

v1.32.3

v1.33.0

v1.33.1

v1.34.0

v1.34.1

v1.34.2

v1.34.3

v1.34.4

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from 'b9b8413cfd'

${ noResults }

Commit Graph

3 Commits (b9b8413cfdb70a3f99e1573333b23052d57ec1ae)

Author	SHA1	Message	Date
hopper-vul	9903253c34	Add str len check in config_sortlist to avoid stack overflow (#497) ... In ares_set_sortlist, it calls config_sortlist(..., sortstr) to parse the input str and initialize a sortlist configuration. However, ares_set_sortlist has not any checks about the validity of the input str. It is very easy to create an arbitrary length stack overflow with the unchecked `memcpy(ipbuf, str, q-str);` and `memcpy(ipbufpfx, str, q-str);` statements in the config_sortlist call, which could potentially cause severe security impact in practical programs. This commit add necessary check for `ipbuf` and `ipbufpfx` which avoid the potential stack overflows. fixes #496 Fix By: @hopper-vul	2 years ago
Manish Mehra	810c2322f9	Configurable hosts path for file_lookup (#465) ... This changeset adds support for configurable hosts file ARES_OPT_HOSTS_FILE (similar to ARES_OPT_RESOLVCONF). Co-authored-by: Manish Mehra (@mmehra)	3 years ago
Fionn Fitzmaurice	6d6cd5daf6	Avoid buffer overflow in RC4 loop comparison (#336) ... The rc4 function iterates over a buffer of size buffer_len who's maximum value is INT_MAX with a counter of type short that is not guaranteed to have maximum size INT_MAX. In circumstances where short is narrower than int and where buffer_len is larger than the maximum value of a short, it may be possible to loop infinitely as counter will overflow and never be greater than or equal to buffer_len. The solution is to make the comparison be between types of equal width. This commit defines counter as an int. Fix By: Fionn Fitzmaurice (@fionn)	5 years ago