[
https://issues.apache.org/jira/browse/PROTON-1903?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16562102#comment-16562102
]
ASF subversion and git services commented on PROTON-1903:
---------------------------------------------------------
Commit 1cce7cab37513e51468be7b343e3f0942e9861d9 in qpid-proton's branch
refs/heads/master from [~astitcher]
[ https://git-wip-us.apache.org/repos/asf?p=qpid-proton.git;h=1cce7ca ]
PROTON-1903: Bug found by OSS Fuzz project
- Forbid described types with a described type descriptor
-- This avoids a potential stack overflow with the current type
decoder implementation caused by recursion.
-- Although the type system formally allows them they are reserved
and have no current use.
- Removed the nested descriptor type test from go as this is now forbidden
OSS-Fuzz bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8310
> Bugs found by the OSS Fuzz project
> ----------------------------------
>
> Key: PROTON-1903
> URL: https://issues.apache.org/jira/browse/PROTON-1903
> Project: Qpid Proton
> Issue Type: Bug
> Components: proton-c
> Affects Versions: proton-c-0.24.0
> Reporter: Andrew Stitcher
> Assignee: Andrew Stitcher
> Priority: Major
> Fix For: proton-c-0.25.0
>
>
> The OSS Fuzz project has been running fuzzing on the proton-c library. This
> has turned up some issues.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
