[Mono-bugs] [Bug 81860][Maj] Changed - RuntimeHelpers.InitializeArray() needs more checks
bugzilla-daemon at bugzilla.ximian.com
bugzilla-daemon at bugzilla.ximian.com
Tue Jun 12 13:09:41 EDT 2007
Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.
Changed by vargaz at gmail.com.
http://bugzilla.ximian.com/show_bug.cgi?id=81860
--- shadow/81860 2007-06-12 02:51:56.000000000 -0400
+++ shadow/81860.tmp.31201 2007-06-12 13:09:41.000000000 -0400
@@ -2,25 +2,29 @@
Product: Mono: Runtime
Version: 1.2
OS: other
OS Details:
Status: NEW
Resolution:
-Severity:
+Severity: Unknown
Priority: Major
Component: misc
AssignedTo: mono-bugs at ximian.com
ReportedBy: jeroen at sumatra.nl
QAContact: mono-bugs at ximian.com
TargetMilestone: ---
URL:
Cc:
-Summary: RuntimeHelpers.InitializeArray() is completely broken
+Summary: RuntimeHelpers.InitializeArray() needs more checks
ves_icall_System_Runtime_CompilerServices_RuntimeHelpers_InitializeArray
() needs more checks.
It should check:
- whether the field has an RVA.
- the size of the field before blindly copying the data.
- that the destination array type doesn't contain references, the current
behavior is a security hole.
+
+------- Additional Comments From vargaz at gmail.com 2007-06-12 13:09 -------
+Yes, we do miss many checks, but we miss them in a million other places
+too.
More information about the mono-bugs
mailing list