[jira] [Updated] (ARROW-6270) [C++][Fuzzing] IPC reads do not check buffer indices

ASF GitHub Bot (JIRA) Fri, 16 Aug 2019 05:00:38 -0700


     [ 
https://issues.apache.org/jira/browse/ARROW-6270?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


ASF GitHub Bot updated ARROW-6270:
----------------------------------
    Labels: fuzzer pull-request-available  (was: fuzzer)

> [C++][Fuzzing] IPC reads do not check buffer indices
> ----------------------------------------------------
>
>                 Key: ARROW-6270
>                 URL: https://issues.apache.org/jira/browse/ARROW-6270
>             Project: Apache Arrow
>          Issue Type: Bug
>          Components: C++
>            Reporter: Marco Neumann
>            Assignee: Marco Neumann
>            Priority: Major
>              Labels: fuzzer, pull-request-available
>         Attachments: crash-bd7e00178af2d236fdf041fcc1fb30975bf8fbca
>
>
> The attached crash was found by {{arrow-ipc-fuzzing-test}} and indicates that 
> the IPC reader is not checking the flatbuffer encoded buffers for length and 
> can produce out-of-bounds-reads.



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)

[jira] [Updated] (ARROW-6270) [C++][Fuzzing] IPC reads do not check buffer indices

Reply via email to