projects / platform / core / connectivity / net-config.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dd033fb) | patch
Fix stack OOB Write Vulnerability in vpn_service_init 27/317827/1 tizen_7.0
authorJaehyun Kim <jeik01.kim@samsung.com>
Wed, 8 Jan 2025 08:51:48 +0000 (17:51 +0900)
committerJaehyun Kim <jeik01.kim@samsung.com>
Wed, 8 Jan 2025 08:53:46 +0000 (17:53 +0900)
commitec8cc252c8f2e91e4ff51633e313cf25db76b477
treed19567da1c77ac24b69df3a66abfb691ae489abatree | snapshot
parentdd033fb63ec438b5d9242fa632b9f482f8fd3195commit | diff
Fix stack OOB Write Vulnerability in vpn_service_init

An Out of Bounds Write vulnerability was discovered and fixed
in the vpn_service_init function of net-config,
which could be used to access the stack array without validation
by using a user-provided index,
thereby setting a value(0x00) in an out-of-bounds location.

Change-Id: I6140d21a7601efe4dad96b63a35385399993fd49
Signed-off-by: Jaehyun Kim <jeik01.kim@samsung.com>
src/vpnsvc-internal.c diff | blob | history
Domain: Network & Connectivity / Data Network;