You are viewing a plain text version of this content. The canonical link for it is here.

Posted to proton@qpid.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2014/03/17 16:21:44 UTC

[jira] [Commented] (PROTON-537) [proton-c] Pointer corruption in SSL buffer handling logic.

    [ https://issues.apache.org/jira/browse/PROTON-537?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13937910#comment-13937910 ] 

ASF subversion and git services commented on PROTON-537:
--------------------------------------------------------

Commit 1578432 from [~kgiusti] in branch 'proton/trunk'
[ https://svn.apache.org/r1578432 ]

PROTON-537: fix dangling pointer in SSL layer.

> [proton-c] Pointer corruption in SSL buffer handling logic.
> -----------------------------------------------------------
>
>                 Key: PROTON-537
>                 URL: https://issues.apache.org/jira/browse/PROTON-537
>             Project: Qpid Proton
>          Issue Type: Bug
>            Reporter: Ken Giusti
>            Assignee: Ken Giusti
>
> Found by running Coverity Scan.
> If the application's input buffer is too small, the SSL layer will expand it as necessary.  During the expansion the data tracking pointer is not reset to the new memory buffer, causing a de-reference of an invalid pointer.



--
This message was sent by Atlassian JIRA
(v6.2#6252)