#2108 Potential Buffer Overflow in msgqueue.c:localConnectServer()

Security
closed-fixed
sfcb (1090)
5
2011-01-16
2010-11-15
Josef Moellers
No

In msgqueue.c:localConnectServer() the message is read before the maximum message size is checked. This could cause a buffer overflow if a message is sent with an improper message size.

Discussion

  • Josef Moellers
    Josef Moellers
    2010-11-15

    Patch to fix potential buffer overflow.

     
    Attachments
  • Chris Buccella
    Chris Buccella
    2010-11-17

    committed to CVS HEAD and git master

     
  • Chris Buccella
    Chris Buccella
    2010-11-17

    • status: open --> pending-fixed
     
  • This Tracker item was closed automatically by the system. It was
    previously set to a Pending status, and the original submitter
    did not respond within 60 days (the time period specified by
    the administrator of this Tracker).

     
    • status: pending-fixed --> closed-fixed