You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@arrow.apache.org by "Marco Neumann (JIRA)" <ji...@apache.org> on 2019/08/16 11:58:00 UTC

[jira] [Created] (ARROW-6270) [C++][Fuzzing] IPC reads do not check buffer indices

Marco Neumann created ARROW-6270:
------------------------------------

             Summary: [C++][Fuzzing] IPC reads do not check buffer indices
                 Key: ARROW-6270
                 URL: https://issues.apache.org/jira/browse/ARROW-6270
             Project: Apache Arrow
          Issue Type: Bug
          Components: C++
            Reporter: Marco Neumann
            Assignee: Marco Neumann
         Attachments: crash-bd7e00178af2d236fdf041fcc1fb30975bf8fbca

The attached crash was found by {{arrow-ipc-fuzzing-test}} and indicates that the IPC reader is not checking the flatbuffer encoded buffers for length and can produce out-of-bounds-reads.



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)