Commit 06d1a032 authored by Matthieu Herrb's avatar Matthieu Herrb Committed by Matt Turner

Check SetMap request length carefully.

Avoid out of bounds memory accesses on too short request.

ZDI-CAN 11572 /  CVE-2020-14360

This vulnerability was discovered by:
Jan-Niklas Sohn working with Trend Micro Zero Day Initiative
Signed-off-by: Matthieu Herrb's avatarMatthieu Herrb <matthieu@herrb.eu>
(cherry picked from commit 446ff2d3)
parent 7ccb3b0e
Pipeline #236993 passed with stages
in 5 minutes and 22 seconds