asedeno.scripts.mit.edu Git - PuTTY.git/commit

]> asedeno.scripts.mit.edu Git - PuTTY.git/commit

author	Ben Harris <bjh21@bjh21.me.uk>
	Wed, 7 Oct 2015 22:54:39 +0000 (23:54 +0100)
committer	Ben Harris <bjh21@bjh21.me.uk>
	Tue, 27 Oct 2015 19:59:14 +0000 (19:59 +0000)
commit	6056396f77cafc7e40da4d09f1d6212408dcb065
tree	eadc15fa5c09dee7b8afd4be6b6375e71152a03b	tree \| snapshot
parent	f7365a2d576d82e8796c0ed0e0145ff8b5c2292f	commit \| diff

More robust control sequence parameter handling.

Parameters are now accumulated in unsigned integers and carefully checked
for overflow (which is turned into saturation).  Things that consume them
now have explicit range checks (again, saturating) to ensure that their
inputs are sane.  This should make it much harder to cause overflow by
supplying ludicrously large numbers.

Fixes two bugs found with the help of afl-fuzz.  One of them may be
exploitable and is CVE-2015-5309.

terminal.c		diff \| blob \| history
terminal.h		diff \| blob \| history

local copy of git://git.tartarus.org/simon/putty.git

RSS Atom