Yahoo P2P stack reading overflow
daniel.atallah at gmail.com
Sat Mar 16 14:30:28 EDT 2013
On Sun, Feb 24, 2013 at 8:02 PM, Daniel Atallah
<daniel.atallah at gmail.com> wrote:
> While looking into coverity CID 732030 (which turned out to be a false
> positive as far as I can tell), I found a lack of validation in the
> handling of P2P messages for the yahoo protocol.
I've pushed the patch to the private main repo as revision 4d139ce8f7ec.
More information about the security