Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Fixed
Priority: Major - P3
Fix Version/s: 3.5.11, 3.6.2
Affects Version/s: 3.6.1
Component/s: None
Labels:
- external-user

Confidence Status:
None

Checklist:

Empty

show more show less

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name:
None
Goal Link:
None

A buffer over-read vulnerability exists in bl <4.0.3, <3.0.1 and <2.2.1 which could allow an attacker to supply user input (even typed) that if it ends up in consume() argument and can become negative, the BufferList state can be corrupted, tricking it into exposing uninitialized memory via regular .slice() calls.

https://github.com/advisories/GHSA-pp7h-53gx-mx7r

Assignee:: Matt Broadstone
Reporter:: Doug Cutting
Reviewers:: None
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Sep 03 2020 09:33:37 PM UTC
Updated:: Oct 29 2023 01:42:17 PM UTC
Resolved:: Sep 10 2020 06:50:59 PM UTC

Details

Description

Attachments

Activity

People

Dates