You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The attached 1.68KB plist file causes a 4GB int[] array allocation when parsed using dd-plist-1.23. It is possibly corrupted, but I think the library should defend itself against this to avoid DOS attacks. This was first reported at sepinf-inc/IPED#1403
The property list seems to be corrupted indeed. But how the library handled that file was really not optimal. Unnecessary memory allocation when parsing binary property lists has been reduced and the issue is now fixed.
The attached 1.68KB plist file causes a 4GB int[] array allocation when parsed using dd-plist-1.23. It is possibly corrupted, but I think the library should defend itself against this to avoid DOS attacks. This was first reported at sepinf-inc/IPED#1403
Let me know if you need some other information.
Thanks in advance.
1061134322640399597.zip
The text was updated successfully, but these errors were encountered: