Kevin Backhouse
Kevin Backhouse
This repo contains several links to https://lgtm.com/blog/. Those blog posts are all being migrated over to https://blog.semmle.com/, so we need to update the links.
The change that I made in #1973 might cause a backwards compatibility issue on complex XML expressions. It is able to handle expressions like this one: https://github.com/beautify-web/js-beautify/blob/37098bafd1d22cbc5c9f1ede30268fa86e26fea2/test/data/javascript/tests.js#L2178 However, if the...
Reported by OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51707 There is an out-of-bounds write here: https://github.com/Exiv2/exiv2/blob/640b0fbf5dd1561ae2d262d654a10f6c8fd2b251/src/quicktimevideo.cpp#L849 The size of `buf` is 100 bytes, so this will overflow if `size` is large. quicktimevideo.cpp is a new...
Fixes: #2352 I reversed the order of the if-then-else cascade to get the bounds checking correct.
Reported by OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51241 This function has caused so much trouble (see #2339, #1838). It's a weird implementation that maybe ought to be replaced, but I'm not sure if that...
This repo contains several links to https://lgtm.com/blog/. Those blog posts are all being migrated over to https://blog.semmle.com/, so we need to update the links.
This is the same fix as https://github.com/github/cmark-gfm/pull/322. It fixes the bug described in https://github.com/github/cmark-gfm/security/advisories/GHSA-r8vr-c48j-fcc5. To reproduce the bug: ```bash python3 -c 'n = 10000; print("1.\n" + " 2.\n"*n)' | time...
This replaces #471 which didn't work correctly. It is a rebase of https://github.com/github/cmark-gfm/pull/323
Fixes: #2952 This is a simplistic fix (more details in #2952). Please let me know if there's a better way to solve this.