Project

General

Profile

Actions

Bug #5557

closed

dcerpc: rust integer underflow

Added by Philippe Antoine over 1 year ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Target version:
Affected Versions:
Effort:
Difficulty:
Label:


Subtasks 1 (0 open1 closed)

Bug #5602: dcerpc: rust integer underflow (6.0.x backport)ClosedVictor JulienActions
Actions #1

Updated by Philippe Antoine over 1 year ago

  • Status changed from New to In Review

Gitlab

Actions #2

Updated by Shivani Bhardwaj over 1 year ago

  • Subtask #5602 added
Actions #3

Updated by Shivani Bhardwaj over 1 year ago

  • Label deleted (Needs backport to 6.0)
Actions #4

Updated by Victor Julien over 1 year ago

  • Target version changed from 7.0.0-beta1 to 7.0.0-rc1
Actions #5

Updated by Victor Julien over 1 year ago

  • Tracker changed from Bug to Security
  • Severity set to MODERATE
Actions #6

Updated by Victor Julien over 1 year ago

  • Tracker changed from Security to Bug
  • Severity deleted (MODERATE)

On further investigation, we believe that this is not a security issue. The underflow itself will not lead to a panic in rust release mode, and all paths appear to be able to deal with the underflowed var w/o issues.

Actions #8

Updated by Victor Julien over 1 year ago

  • Private changed from Yes to No
Actions

Also available in: Atom PDF