diff options
author | Katie Hockman <katie@golang.org> | 2022-01-19 16:54:41 -0500 |
---|---|---|
committer | Katie Hockman <katie@golang.org> | 2022-01-28 15:39:20 +0000 |
commit | 07ee9e6445057e181fb3895df978748ffef30327 (patch) | |
tree | 2222d35a814d9ae2f8d6493b42421c1497058cc2 /src/debug/macho/file.go | |
parent | 6cbcf581aff555d09d91ae1b3b360511ebb7e35f (diff) | |
download | go-07ee9e6445057e181fb3895df978748ffef30327.tar.gz go-07ee9e6445057e181fb3895df978748ffef30327.zip |
[release-branch.go1.16] math/big: prevent overflow in (*Rat).SetString
Credit to rsc@ for the original patch.
Thanks to the OSS-Fuzz project for discovering this
issue and to Emmanuel Odeke (@odeke_et) for reporting it.
Updates #50699
Fixes #50700
Fixes CVE-2022-23772
Change-Id: I590395a3d55689625390cf1e58f5f40623b26ee5
Reviewed-on: https://go-review.googlesource.com/c/go/+/379537
Trust: Katie Hockman <katie@golang.org>
Run-TryBot: Katie Hockman <katie@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Emmanuel Odeke <emmanuel@orijtech.com>
Reviewed-by: Roland Shoemaker <roland@golang.org>
Reviewed-by: Julie Qiu <julie@golang.org>
(cherry picked from commit ad345c265916bbf6c646865e4642eafce6d39e78)
Reviewed-on: https://go-review.googlesource.com/c/go/+/381337
Diffstat (limited to 'src/debug/macho/file.go')
0 files changed, 0 insertions, 0 deletions