projects / qt4-x11.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5bea20a) | patch
[PATCH] Fix possible heap corruption in QXmlStream
authorAllan Sandfeld Jensen <allan.jensen@qt.io>
Mon, 13 Aug 2018 13:29:16 +0000 (15:29 +0200)
committerLisandro Damián Nicanor Pérez Meyer <lisandro@debian.org>
Mon, 14 Sep 2020 13:56:35 +0000 (14:56 +0100)
commite043911f4383351d2f63e2a6a5dc5edd2c4f81ac
tree4919998c0e8b3ad83d9519bb9119dd0749af51catree | snapshot
parent5bea20ad883bcc38e41dee18fa0773b05d65c2a2commit | diff
[PATCH] Fix possible heap corruption in QXmlStream

The value of 'tos' at the check might already be on the last element,
so triggering stack expansion on the second last element is too late.

Change-Id: Ib3ab2662d4d27a71effe9e988b9e172923af2908
Reviewed-by: Richard J. Moore <rich@kde.org>
Reviewed-by: Thiago Macieira <thiago.macieira@intel.com>
Gbp-Pq: Name CVE-2018-15518.patch
src/corelib/xml/qxmlstream_p.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.