Secure processing of PDUs (avoid potential segfault)

open-dis / open-dis-cpp

C++ implementation of the IEEE-1278.1 Distributed Interactive Simulation (DIS) application protocol v6 and v7

BSD 2-Clause "Simplified" License

90 stars 65 forks source link

Closed phoppermann closed 3 years ago

phoppermann commented 3 years ago

If a PDU is malformed (especially if it has variable data), it can happen that unmarshal tries to access areas outside of the buffer.

leif81 commented 3 years ago

Thanks @phoppermann !