gstrtspconnection: Security loophole making heap overflow (!157) · Merge requests · GStreamer / gst-plugins-base · GitLab

Snippets Groups Projects

Due to an influx of spam, we have had to impose restrictions on new accounts. Please see this wiki page for instructions on how to get full permissions. Sorry for the inconvenience.

gitlab.freedesktop.org will be unavailable for up to a week starting March 16th, due to our ongoing infrastructure move. You can follow our planning tracker at https://gitlab.freedesktop.org/freedesktop/freedesktop/-/issues/2076

The source project of this merge request has been removed.

Merged Tobias Ronge requested to merge (removed):fix-sec into master 5 years ago

The former code allowed an attacker to create a heap overflow by sending a longer than allowed session id in a response and including a semicolon to change the maximum length. With this change, the parser will never go beyond 512 bytes.

Activity

Sebastian Dröge enabled an automatic merge when the pipeline for f6722775 succeeds 5 years ago

enabled an automatic merge when the pipeline for f6722775 succeeds
Sebastian Dröge added Needs backport label 5 years ago

added Needs backport label
Sebastian Dröge merged 5 years ago

merged
Tim-Philipp Müller added 1.14 label 5 years ago

added 1.14 label
Tim-Philipp Müller added Backported into 1.16 label and removed Needs backport label 5 years ago

added Backported into 1.16 label and removed Needs backport label
GStreamer Release Monkey @gstreamer-release-bot · 4 years ago

Developer

Gitlab won't let me set milestone %1.15.90 on this because the original repo disappeared (looks like it was deleted and re-created).

Please register or sign in to reply