UTF-16/UTF-32 charset detector has buffer overrun

Description

The buffer length check is not in UTF-16/32 detector before checking the BOM.

It's found by Chrome's automated testing tool. (ChromiumBug:275803 : not accessible by others).

I have a patch.

Activity

Show:
TracBot
June 30, 2018, 11:41 PM
Trac Comment 3 by —2013-09-30T22:29:32.651Z

This issue was assigned CVE-2013-2924. http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2924 : specifics are still missing, though.

Fixed

Assignee

Jungshik Shin

Reporter

Jungshik Shin

Components

Labels

Reviewer

None

Priority

assess

Time Needed

None

Fix versions