Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-39219

Buffer overflow in PROXY protocol header v1 parsing

    XMLWordPrintable

Details

    • Not for ES Release Notes
    • Fixed possible 1 byte stack buffer overflow in proxy header v1 parsing.

    Description

      There is a buffer overflow issue in the PROXY protocol v1 header parsing (parse_proxy_protocol_header()).

      The loop that reads the v1 header could fill the entire buffer and then add a null terminator past the boundary, which leads to an off-by-one overflow.

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. MDEV-39466 Proxy Protocol V1 parser suffers from an off-by-one stack buffer overflow and unbounded sscanf

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. MDEV-39564 One-byte OOB write in PROXY protocol v1 header parser

          • Major - Major loss of function.
          • Closed

          Activity

            People

              wlad Vladislav Vaintroub
              gkodinov Georgi Kodinov
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.