projects / platform / core / base / tizen-locale.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c29d143) | patch
[CVE-2019-25013] Fix buffer overrun in EUC-KR conversion module (bz #24973) 06/252506/1 accepted/tizen_6.0_unified tizen_6.0 accepted/tizen/6.0/unified/20210311.081910 accepted/tizen/unified/20210201.055358 submit/tizen/20210129.052042 submit/tizen_6.0/20210310.051123
authorAndreas Schwab <schwab@suse.de>
Mon, 21 Dec 2020 03:26:43 +0000 (08:56 +0530)
committerDongHun Kwak <dh0128.kwak@samsung.com>
Fri, 29 Jan 2021 05:01:00 +0000 (14:01 +0900)
commitba7cc043e1490878f7813aeb275aef6038adc2d7
treea0e4f1ec0be4dd96f3d5bf424e3b85283d259990tree | snapshot
parentc29d14353fc624c34074d100b0e99dafcece4b3dcommit | diff
[CVE-2019-25013] Fix buffer overrun in EUC-KR conversion module (bz #24973)

The byte 0xfe as input to the EUC-KR conversion denotes a user-defined
area and is not allowed.  The from_euc_kr function used to skip two bytes
when told to skip over the unknown designation, potentially running over
the buffer end.

Change-Id: I832212c1293fab982b2811fc6111575d0f7089fb
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
iconvdata/euc-kr.c diff | blob | history
iconvdata/ksc5601.h diff | blob | history
Domain: System / Toolchain;