diff options
author | Robert Griesemer <gri@golang.org> | 2021-05-02 11:27:03 -0700 |
---|---|---|
committer | Katie Hockman <katie@golang.org> | 2021-05-27 19:50:22 +0000 |
commit | df9ce19db6df32d94eae8760927bdfbc595433c3 (patch) | |
tree | a5af3c9edf28d0da4ce847752215f17810bcd8ca /src/net/lookup.go | |
parent | 3380b180c66ffcee2bec37877f4a5be5ab78fd5c (diff) | |
download | go-df9ce19db6df32d94eae8760927bdfbc595433c3.tar.gz go-df9ce19db6df32d94eae8760927bdfbc595433c3.zip |
[release-branch.go1.15] math/big: check for excessive exponents in Rat.SetString
Found by OSS-Fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33284
Thanks to Emmanuel Odeke for reporting this issue.
Updates #45910
Fixes #46305
Fixes CVE-2021-33198
Change-Id: I61e7b04dbd80343420b57eede439e361c0f7b79c
Reviewed-on: https://go-review.googlesource.com/c/go/+/316149
Trust: Robert Griesemer <gri@golang.org>
Trust: Katie Hockman <katie@golang.org>
Run-TryBot: Robert Griesemer <gri@golang.org>
TryBot-Result: Go Bot <gobot@golang.org>
Reviewed-by: Katie Hockman <katie@golang.org>
Reviewed-by: Emmanuel Odeke <emmanuel@orijtech.com>
(cherry picked from commit 6c591f79b0b5327549bd4e94970f7a279efb4ab0)
Reviewed-on: https://go-review.googlesource.com/c/go/+/321831
Run-TryBot: Katie Hockman <katie@golang.org>
Reviewed-by: Roland Shoemaker <roland@golang.org>
Diffstat (limited to 'src/net/lookup.go')
0 files changed, 0 insertions, 0 deletions