-
Notifications
You must be signed in to change notification settings - Fork 2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
NCC-2016-015 - Out-of-bounds Read in Boost date Class #1459
Labels
C-audit
Category: Issues and tasks related to audit findings
I-SECURITY
Problems and improvements related to security.
M-has-pr
To-be-removed (GitHub has linked:pr filter)
Milestone
Comments
daira
added
I-SECURITY
Problems and improvements related to security.
NCC finding
labels
Sep 30, 2016
daira
added a commit
to daira/zcash
that referenced
this issue
Oct 20, 2016
…ead bugs. ref zcash#1459 Signed-off-by: Daira Hopwood <daira@jacaranda.org>
zkbot
pushed a commit
that referenced
this issue
Oct 20, 2016
Avoid boost::posix_time functions that have potential out-of-bounds read bugs ref #1459 Signed-off-by: Daira Hopwood <daira@jacaranda.org>
daira
added a commit
to daira/zcash
that referenced
this issue
Oct 21, 2016
…bounds read bugs. ref zcash#1459" This reverts commit a652e41.
str4d
added a commit
to str4d/zcash
that referenced
this issue
Oct 22, 2016
… out-of-bounds read bugs. ref zcash#1459"" This reverts commit f19cb7b.
daira
changed the title
NCC-2016-015
NCC-2016-015 - Out-of-bounds Read in Boost date Class
Oct 23, 2016
|
Actually I'll open another ticket for that. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
C-audit
Category: Issues and tasks related to audit findings
I-SECURITY
Problems and improvements related to security.
M-has-pr
To-be-removed (GitHub has linked:pr filter)
[Edit by Daira]
A two-byte stack based overflow in a date constructor in the Boost libraries is undefined
behavior and may result in data leaks.
The text was updated successfully, but these errors were encountered: