Possible memory corruption with user and role names
Bug #1370740 reported by
Roberta Marton
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Trafodion |
Fix Released
|
Medium
|
Cliff Gray |
Bug Description
The person that designed and implemented this function did not include a length parameter on purpose. The intention that only the cli GET_SESSION calls and ComUser class will call these functions. Both these places do check for lengths. However, to avoid issues going forward, more care is needed to avoid memory overruns in case someone calls this function with an incorrect buffer size.
tags: | added: sql-security |
Changed in trafodion: | |
milestone: | none → r1.1 |
Changed in trafodion: | |
status: | New → In Progress |
Changed in trafodion: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Forgot to mention the functions - it is part of the authQuery mechanism found in Context.cpp