Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-8275

Range check DelegationKey length

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 0.23.0
    • 2.0.0-alpha
    • None
    • None
    • Reviewed

    Description

      Harden serialization logic against malformed or malicious input.

      Add range checking to readVInt, to detect overflows, underflows, and larger-than-expected values.

      Attachments

        1. HADOOP-8275.003.patch
          5 kB
          Colin McCabe
        2. HADOOP-8275.002.patch
          5 kB
          Colin McCabe
        3. HADOOP-8275.001.patch
          3 kB
          Colin McCabe

        Issue Links

          Activity

            People

              cmccabe Colin McCabe
              cmccabe Colin McCabe
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: