[ARROW-9948] [C++] Decimal128 does not check scale range when rescaling; can cause buffer overflow - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 6.0.0, 5.0.1
Component/s: C++
Labels:
- pull-request-available

External issue URL:
https://github.com/apache/arrow/issues/17339

Description

BasicDecimal128::GetScaleMultiplier has a DCHECK on the scale, but the scale can come from users. For example, Decimal128::FromString("1e100") will cause an out-of-bound read.

BasicDecimal128::Rescale and BasicDecimal128::GetWholeAndFraction have the same problem.

Attachments

Issue Links

links to

GitHub Pull Request #8955

GitHub Pull Request #10823

Activity

People

Assignee:: Antoine Pitrou

Reporter:: Mingyu Zhong

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 08/Sep/20 23:28

Updated:: 11/Jan/23 08:10

Resolved:: 03/Aug/21 10:47

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

4h 20m