security issues in rencode

[totaam]

Just reported two security issues in rencode:

• unchecked malloc failure can cause segfault
• out-of-bounds reads

For our use case, I believe this can just cause a server crash, I don't think we leak parsed data from packets back to the user - but maybe disconnection messages? (those would need to be trimmed)

[totaam]

The first bug is now fixed and version 1.0.5 will include it, the second one was already fixed in rencode 1.0.4. (my bad)

Until 1.0.5 is officially released (new blocker: [https://github.com/aresch/rencode/issues/9]), here's a download link: [https://github.com/aresch/rencode/archive/a5ab0fb6c3603d1e9c53e2cfc262b2288d2912d8.zip].

[totaam]

This is all fixed in version 1.0.5, bumped for osx and rpm in r13028. (r13029 for centos6 because of this bug: [https://github.com/aresch/rencode/issues/10])

@smo: time to update.

[totaam]

• r13120 updates the debian repos to use 1.0.5
• r13129 removes rencode from our source tree

[totaam]

2016-08-11 17:37:16: smo commented

---

All updated.