LadybirdBrowser/ladybird
1
1
Fork 0
mirror of https://github.com/LadybirdBrowser/ladybird.git synced 2024-11-11 09:18:05 +03:00
Code Issues Packages Projects Releases Wiki Activity
8a7935a29f
ladybird/Services/SystemServer
History
Ben Wiederhake e682967d7e LibCore: Prefer strlcpy over strncpy, fix overflow 
A malicious caller can create a SocketAddress for a local unix socket with an
over-long name that does not fit into struct sock_addr_un.
- Socket::connet: This caused the 'sun_path' field to
  overflow, probably overwriting the return pointer of the call frame, and thus
  crashing the process (in the best case).
- SocketAddress::to_sockaddr_un: This triggered a RELEASE_ASSERT, and thus
  crashing the process.

Both have been fixed to return a nice error code instead of crashing.
2020-08-24 00:45:03 +02:00
..
CMakeLists.txt Build: Switch to CMake :^) 2020-05-14 20:15:18 +02:00
main.cpp SystemServer: Fix typo (exist -> exit) (#2615) 2020-06-23 14:52:15 +02:00
Service.cpp LibCore: Prefer strlcpy over strncpy, fix overflow 2020-08-24 00:45:03 +02:00
Service.h SystemServer: Add support for accepting socket connections :^) 2020-06-09 21:12:34 +02:00