projects / platform / upstream / libxml2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 847949e) | patch
[CVE-2020-24977] Fix out-of-bounds read with 'xmllint --htmlout' 31/253731/1 accepted/tizen/base/tool/20210223.010101 submit/tizen_base/20210217.050546
authorNick Wellnhofer <wellnhofer@aevum.de>
Fri, 7 Aug 2020 19:54:27 +0000 (21:54 +0200)
committerDongHun Kwak <dh0128.kwak@samsung.com>
Wed, 17 Feb 2021 04:55:21 +0000 (13:55 +0900)
commit1dd122f9bfe78e7074f08209b99b40c7b9a72314
tree55ac12a4d200af7f8a9a8f1e005ed5106cc3a823tree | snapshot
parent847949e090c6dcc10af0f6b1ab58114d9cd9b543commit | diff
[CVE-2020-24977] Fix out-of-bounds read with 'xmllint --htmlout'

Make sure that truncated UTF-8 sequences don't cause an out-of-bounds
array access.

Thanks to @SuhwanSong and the Agency for Defense Development (ADD) for
the report.

Fixes #178.

Change-Id: Ibae2db998ba4c0f4ba1130869b4cec77a65d648e
Signed-off-by: DongHun Kwak <dh0128.kwak@samsung.com>
xmllint.c diff | blob | history
Domain: System / Base;