5 Nov
2015
5 Nov
'15
4:07 a.m.
ryan@nardis.ca wrote:
On Thu, Nov 05, 2015 at 12:12:26AM +0000, ondra@mistotebe.net wrote:
Hi, the following will assert in liblber on i386 (and it should be possible to craft a similar one for 64bit, I think):
echo 'CoSSoJKSCg==' | base64 -d | ~/code/openldap/libraries/liblber/etest .
ITYM dtest?
slapd's sane default setting for sb_max_incoming appears to mitigate most of the potential security impact of this one.
Agreed.
But I guess we need to reject any len values that exceed the range of a signed ber_len_t, since many liblber functions can only return a ber_slen_t result.
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
3304
Age (days ago)
3304
Last active (days ago)
0 comments
1 participants
participants (1)
-
hyc@symas.com