1028486 – json-c: array hardening

Bug 1028486 - json-c: array hardening

Summary: json-c: array hardening

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	json-c
Sub Component:
Version:	7.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	---
Assignee:	Remi Collet
QA Contact:	BaseOS QE - Apps
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1028485
TreeView+	depends on / blocked

Reported:	2013-11-08 15:00 UTC by Florian Weimer
Modified:	2015-12-17 10:36 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-12-17 10:36:02 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Florian Weimer 2013-11-08 15:00:25 UTC

The array_list_get_idx() function should check for negative indexes, too.

array_list_expand_internal() should check for negative max values and integer overflows.

This is purely hardening, there is no known security impact.

Comment 3 Florian Weimer 2015-09-21 09:03:10 UTC

This was reported upstream: https://github.com/json-c/json-c/issues/187

Note You need to log in before you can comment on or make changes to this bug.