Changeset 2:6813b46b98f2 in rrlib_uri

Timestamp:

27.06.2017 07:38:29 (6 years ago)

Author:

Max Reichardt <mreichardt@…>

Branch:

default

Phase:

public

Message:

Introduces size limit for tPath deserialization (so erroneous input can not cause segmentation fault due to invalid memory allocation)

File:

• tPath.cpp (modified) (2 diffs)

tPath.cpp

@@ -63 +63 @@
 // Const values
 //----------------------------------------------------------------------
+static const size_t cDESERIALIZATION_SIZE_LIMIT = 50000;
 
 //----------------------------------------------------------------------
@@ -168 +169 @@
 {
   size_t size = stream.ReadInt();
+  if (size > cDESERIALIZATION_SIZE_LIMIT)
+  {
+    throw std::runtime_error("Size limit for path deserialization exceeded");
+  }
   char buffer[size];
   stream.ReadFully(buffer, size);