projects / qt4-x11.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8cebd37) | patch
[PATCH] Fix possible heap corruption in QXmlStream
authorAllan Sandfeld Jensen <allan.jensen@qt.io>
Mon, 13 Aug 2018 13:29:16 +0000 (15:29 +0200)
committerUtkarsh Gupta <utkarsh@debian.org>
Mon, 24 Jan 2022 10:55:59 +0000 (10:55 +0000)
commitdbdf315bf1a799a525330a0e21f1f8e5c29d42e4
tree8c8735b3a5f4b07a44f98a99530c18fc6ac94cf9tree | snapshot
parent8cebd3704aa81e45e2d0a9343ebb129de4aa5083commit | diff
[PATCH] Fix possible heap corruption in QXmlStream

The value of 'tos' at the check might already be on the last element,
so triggering stack expansion on the second last element is too late.

Change-Id: Ib3ab2662d4d27a71effe9e988b9e172923af2908
Reviewed-by: Richard J. Moore <rich@kde.org>
Reviewed-by: Thiago Macieira <thiago.macieira@intel.com>
Gbp-Pq: Name CVE-2018-15518.patch
src/corelib/xml/qxmlstream_p.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.