[Bug 30741] New: Does not properly validate UTF-8 received from the network.

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Sun Oct 10 01:31:15 CEST 2010


https://bugs.freedesktop.org/show_bug.cgi?id=30741

           Summary: Does not properly validate UTF-8 received from the
                    network.
           Product: Telepathy
           Version: git master
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: medium
         Component: idle
        AssignedTo: telepathy-bugs at lists.freedesktop.org
        ReportedBy: will.thompson at collabora.co.uk
         QAContact: telepathy-bugs at lists.freedesktop.org


If Idle receives a message containing well-formed UTF-8, it doesn't verify that
all the code-points are actually defined. So if you send it the UTF-8 encoding
of, say, U+FDD2, it happily puts that into a D-Bus signal and gets booted by
dbus-daemon (or maybe by dbus-glib? Unsure).

Thanks to Nicolas Coevoet for reporting this on #telepathy.

-- 
Configure bugmail: https://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
You are the assignee for the bug.



More information about the telepathy-bugs mailing list