Bug 790784 - (CVE-2017-17784) heap overread in gbr parser / load_image.
We were assuming the input name was well formed, hence was nul-terminated. As any data coming from external input, this has to be thorougly checked.
parent
28e95fbe
Please register or sign in to comment