tag | 8f8bd7c77eba811e0566bfbe1f36a3d3837c59c2 | |
---|---|---|
tagger | Daniel Veillard <veillard@redhat.com> | Fri Nov 20 10:50:24 2015 +0800 |
object | 6360a31a84efe69d155ed96306b9a931a40beab9 |
Fix for CVE-2015-7497
commit | 6360a31a84efe69d155ed96306b9a931a40beab9 | [log] [tgz] |
---|---|---|
author | David Drysdale <drysdale@google.com> | Fri Nov 20 10:47:12 2015 +0800 |
committer | Daniel Veillard <veillard@redhat.com> | Fri Nov 20 10:47:12 2015 +0800 |
tree | 2f78a1031ab8e14f2e01c1f3a9affad77bd142f8 | |
parent | 53ac9c9649fa091377dfea9511f012171f08972d [diff] |
CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey For https://bugzilla.gnome.org/show_bug.cgi?id=756528 It was possible to hit a negative offset in the name indexing used to randomize the dictionary key generation Reported and fix provided by David Drysdale @ Google