Yahoo P2P stack reading overflow

Daniel Atallah daniel.atallah at
Sat Mar 16 14:30:28 EDT 2013

On Sun, Feb 24, 2013 at 8:02 PM, Daniel Atallah
<daniel.atallah at> wrote:
> While looking into coverity CID 732030 (which turned out to be a false
> positive as far as I can tell), I found a lack of validation in the
> handling of P2P messages for the yahoo protocol.


I've pushed the patch to the private main repo as revision 4d139ce8f7ec.


More information about the security mailing list