[release-branch.go1.13-security] encoding/binary: read at most MaxVarintLen64 bytes in ReadUvarint - go - Fork of Go programming language with my patches.

diff options

author	Katie Hockman <katie@golang.org>	2020-08-04 11:45:32 -0400
committer	Katie Hockman <katiehockman@google.com>	2020-08-06 13:03:23 +0000
commit	ec5b63a6a2b6205cc204e9ce856e7517a1b989d2 (patch)
tree	5f46fe2493b37aee2ab7aed2610c0bb01eeb0b79 /src/database/sql/sql.go
parent	d3ba94164a1c404a01369fb54ddd4f5b94d91348 (diff)
download	go-ec5b63a6a2b6205cc204e9ce856e7517a1b989d2.tar.xz

[release-branch.go1.13-security] encoding/binary: read at most MaxVarintLen64 bytes in ReadUvarint

This CL ensures that ReadUvarint consumes only a limited amount of input (instead of an unbounded amount). On some inputs, ReadUvarint could read an arbitrary number of bytes before deciding to return an overflow error. After this CL, ReadUvarint returns that same overflow error sooner, after reading at most MaxVarintLen64 bytes. Fix authored by Robert Griesemer and Filippo Valsorda. Thanks to Diederik Loerakker, Jonny Rhea, Raúl Kripalani, and Preston Van Loon for reporting this. Fixes CVE-2020-16845 Change-Id: Ie0cb15972f14c38b7cf7af84c45c4ce54909bb8f Reviewed-on: https://team-review.git.corp.google.com/c/golang/go-private/+/812099 Reviewed-by: Filippo Valsorda <valsorda@google.com> Reviewed-on: https://team-review.git.corp.google.com/c/golang/go-private/+/812324

Diffstat (limited to 'src/database/sql/sql.go')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: