Skip to content

Fix out-of-bound memory access when num-fields is not provided#2464

Merged
ranshid merged 1 commit intovalkey-io:unstablefrom
ranshid:fix-hfe-potential-buffer-overflow
Aug 11, 2025
Merged

Fix out-of-bound memory access when num-fields is not provided#2464
ranshid merged 1 commit intovalkey-io:unstablefrom
ranshid:fix-hfe-potential-buffer-overflow

Conversation

@ranshid
Copy link
Member

@ranshid ranshid commented Aug 11, 2025
edited
Loading

Following new API presented in #2089, we might access out of bound memory in case of some illegal command input

@ranshid ranshid self-assigned this Aug 11, 2025
@ranshid ranshid added the bug Something isn't working label Aug 11, 2025
@codecov
Copy link

codecov bot commented Aug 11, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 71.60%. Comparing base (cc46538) to head (862e039).
⚠️ Report is 4 commits behind head on unstable.

Additional details and impacted files 
@@             Coverage Diff              @@
##           unstable    #2464      +/-   ##
============================================
+ Coverage     71.57%   71.60%   +0.02%     
============================================
  Files           125      125              
  Lines         69218    69213       -5     
============================================
+ Hits          49545    49560      +15     
+ Misses        19673    19653      -20
Files with missing lines Coverage Δ
src/t_hash.c 96.23% <100.00%> (+1.06%) ⬆️

... and 17 files with indirect coverage changes

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@ranshid ranshid merged commit ecca213 into valkey-io:unstable Aug 11, 2025
52 checks passed
allenss-amazon pushed a commit to allenss-amazon/valkey-core that referenced this pull request Aug 19, 2025
@ranshid @allenss-amazon
Fix out-of-bound memory access when num-fields is not provided (valke…
f783d75 
…y-io#2464)

Following new API presented in
valkey-io#2089, we might access out of
bound memory in case of some illegal command input

Signed-off-by: Ran Shidlansik <[email protected]>
hpatro pushed a commit to hpatro/valkey that referenced this pull request Oct 3, 2025
@ranshid @hpatro
Fix out-of-bound memory access when num-fields is not provided (valke…
3f8e086 
…y-io#2464)

Following new API presented in
valkey-io#2089, we might access out of
bound memory in case of some illegal command input

Signed-off-by: Ran Shidlansik <[email protected]>
Signed-off-by: Harkrishn Patro <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@enjoy-binbin enjoy-binbin enjoy-binbin approved these changes

Assignees

@ranshid ranshid

Labels

bug Something isn't working

Projects

Valkey 9.0
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ranshid @enjoy-binbin