Skip to content

SECBUG-240 Fix out-of-bounds reads#325

Merged
jamis merged 5 commits intomongodb:masterfrom
jamis:cve-98-fix-oob-reads
Mar 28, 2024
Merged

SECBUG-240 Fix out-of-bounds reads#325
jamis merged 5 commits intomongodb:masterfrom
jamis:cve-98-fix-oob-reads

Conversation

@jamis
Copy link
Contributor

@jamis jamis commented Mar 21, 2024

Using strlen may result in reading beyond the end of the buffer (if the buffer is not null-terminated). For this reason, we should avoid using strlen and prefer a more explicit approach that also takes into account the size of the buffer.

@jamis jamis requested a review from comandeo-mongo March 21, 2024 22:12
@jamis jamis merged commit d3eab30 into mongodb:master Mar 28, 2024
@jamis jamis deleted the cve-98-fix-oob-reads branch March 28, 2024 14:17
jamis added a commit to jamis/bson-ruby that referenced this pull request Mar 28, 2024
@jamis
SECBUG-240 Fix out-of-bounds reads (mongodb#325)
cfb0496 
* final tweaks for BSON 5 release

* SECBUG-240 strlen might read beyond end of buffer

* ruby 2.6 isn't supported

* nix 2.6
@jamis jamis mentioned this pull request Mar 28, 2024
Merged
jamis added a commit that referenced this pull request Apr 2, 2024
@jamis
SECBUG-240 Fix out-of-bounds reads (backport to 4.15-stable) (#326)
dfbb4ed 
* SECBUG-240 Fix out-of-bounds reads (#325)

* final tweaks for BSON 5 release

* SECBUG-240 strlen might read beyond end of buffer

* ruby 2.6 isn't supported

* nix 2.6

* version bump
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@comandeo-mongo comandeo-mongo comandeo-mongo approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jamis @comandeo-mongo