http_proto icon indicating copy to clipboard operation
http_proto copied to clipboard
verified publisher icon cppalliance

header max capacity calcuations overflow vulnerabilities

Open cmazakas opened this issue 1 year ago • 0 comments

The code used to calculate theoretical allocated header maximums lacks guards for overflow.

For example, if offset_type is u32 then u32::max as max_offset is problematic when used to allocate the header.

cmazakas avatar Mar 27 '24 18:03 cmazakas