Description
This PR added a bounds check before memcpy operation in name_parse() function to prevent potential out-of-bounds reads. This potential vulnerability was cloned from libevent and was fixed in libevent/libevent@96f64a0.
Reference:
libevent/libevent@96f64a0
CVE-2016-10195
最初由 @npt-1707 在 TelegramMessenger/Telegram-iOS#1740 发布
┆Issue is synchronized with this Jira Task
Description
This PR added a bounds check before memcpy operation in name_parse() function to prevent potential out-of-bounds reads. This potential vulnerability was cloned from libevent and was fixed in libevent/libevent@96f64a0.
Reference:
libevent/libevent@96f64a0
CVE-2016-10195
最初由 @npt-1707 在 TelegramMessenger/Telegram-iOS#1740 发布
┆Issue is synchronized with this Jira Task