commit | 1a15f7ceda9e0ed137a1a9808ed2a1b997ee78aa | [log] [tgz] |
---|---|---|
author | Jake Farrell <jfarrell@apache.org> | Fri Oct 12 00:45:34 2012 +0000 |
committer | Jake Farrell <jfarrell@apache.org> | Fri Oct 12 00:45:34 2012 +0000 |
tree | c15e0917299606acfd42734c8597184d96f8b220 | |
parent | c6c01f26dbf8c8fdb218d67354ac68b1703e2e08 [diff] |
Thrift-1643:Denial of Service attack in TBinaryProtocol.readString Client: java Patch: Niraj Tolia In readString, if the string field's size is greater than the number of bytes remaining in the byte array to deserialize, libthrift will happily allocate a byte array of that size in readStringBody, filling the heap. git-svn-id: https://svn.apache.org/repos/asf/thrift/branches/0.9.x@1397398 13f79535-47bb-0310-9956-ffa450edef68