[MDEV-39463] Harden Proxy Protocol V2 parsing against OOB reads and short reads - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Duplicate
Affects Version/s: 13.0
Fix Version/s: 10.6.28, 10.11.19, 11.4.13, 11.8.9
Component/s: Protocol
Labels:
None

Bug Category:
Not for Release Notes

Description

This improves validation in the PROXY protocol v2 parsing path.

The previous implementation assumed vio_read() would return the full
requested number of bytes, but short reads are possible and could leave
parts of the header buffer only partially initialized while parsing
continued.

Attachments

Issue Links

duplicates

MDEV-39576 PROXY v2 protocol uninitialized memory reads

Closed

Activity

People

Assignee:: Sergei Golubchik

Reporter:: Georgi Kodinov

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2026-04-28 07:35

Updated:: 2026-05-28 09:31

Resolved:: 2026-05-17 22:09

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.