Check key length when reading key from network
Bug #1093439 reported by
Kostja Osipov
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| tarantool |
In Progress
|
Low
|
Roman Tsisyk | ||
Bug Description
To avoid unnecessary allocation and thus DoS vector, check key length for MAX_TUPLE_LENGTH when reading keys from network (iproto protocol parser).
| Changed in tarantool: | |
| status: | New → Confirmed |
| assignee: | nobody → Roman Tsisyk (rtsisyk) |
| Changed in tarantool: | |
| importance: | Undecided → Low |
| milestone: | none → 1.5.1 |
| status: | Confirmed → In Progress |
| Changed in tarantool: | |
| milestone: | 1.5.1 → 1.5.2 |
To post a comment you must log in.
