Commit Graph

306 Commits

Author SHA1 Message Date
Pierre Ossman
3282836baf Make ZlibInStream more robust against failures
Move the checks around to avoid missing cases where we might access
memory that is no longer valid. Also avoid touching the underlying
stream implicitly (e.g. via the destructor) as it might also no
longer be valid.

A malicious server could theoretically use this for remote code
execution in the client.

Issue found by Pavel Cheremushkin from Kaspersky Lab
2020-09-21 12:40:12 +03:00
Lauri Kasanen
ac06594b12 Add .gitignore 2020-09-21 12:33:19 +03:00
Kasm
5da407c11f
Update README.md 2020-09-20 09:11:28 -04:00
Kasm
313961153c
Update install.sh
Modified installer to use release on GitHub
2020-09-20 09:04:35 -04:00
matt
408c005d3e Initial commit 2020-09-20 12:16:44 +00:00
Kasm
09a4460ddb
Initial commit 2020-09-13 12:50:42 -04:00