DGNum/ubus - Forge git de la DGNum

DGNum/ubus

Fork 0

Commit graph

Author	SHA1	Message	Date
Petr Štetiar	a1523d76b0	fix blob parsing vulnerability by using blob_parse_untrusted blob_parse expects blobs from trusted inputs, but it can be supplied with possibly malicious blobs from untrusted inputs as well, which might lead to undefined behaviour and/or crash of ubus daemon. In order to prevent such conditions, switch to blob_parse_untrusted which should hopefully handle such untrusted inputs appropriately. Signed-off-by: Petr Štetiar <ynezz@true.cz>	2019-12-19 19:53:25 +01:00
Petr Štetiar	08f17c87a0	add fuzzer and cram based unit tests For improved QA etc. Signed-off-by: Petr Štetiar <ynezz@true.cz>	2019-12-16 23:39:16 +01:00

Author

SHA1

Message

Date

Petr Štetiar

a1523d76b0

fix blob parsing vulnerability by using blob_parse_untrusted

blob_parse expects blobs from trusted inputs, but it can be supplied
with possibly malicious blobs from untrusted inputs as well, which might
lead to undefined behaviour and/or crash of ubus daemon. In order to
prevent such conditions, switch to blob_parse_untrusted which should
hopefully handle such untrusted inputs appropriately.

Signed-off-by: Petr Štetiar <ynezz@true.cz>

2019-12-19 19:53:25 +01:00

Petr Štetiar

08f17c87a0

add fuzzer and cram based unit tests

For improved QA etc.

Signed-off-by: Petr Štetiar <ynezz@true.cz>

2019-12-16 23:39:16 +01:00

2 commits