Branch: refs/heads/989673 Home: https://github.com/bluez/bluez Commit: 4eead430b267e1a06792cc9fa90d91a7b7ef75c1 https://github.com/bluez/bluez/commit/4eead430b267e1a06792cc9fa90d91a7b7ef75c1 Author: Oliver Chang <ochang@xxxxxxxxxx> Date: 2025-08-10 (Sun, 10 Aug 2025) Changed paths: M src/sdp-xml.c Log Message: ----------- Fixed heap-buffer-overflow in `compute_seq_size`. By adding checks for sequence/alternate types in element_end to avoid a type confusion. This issue was found by OSS-Fuzz. This can be triggered by using an input of `<sequence><foo/><text/></sequence>` against the harness in https://github.com/google/oss-fuzz/blob/master/projects/bluez/fuzz_xml.c https://issues.oss-fuzz.com/issues/42516062 https://oss-fuzz.com/testcase-detail/5896441415729152 To unsubscribe from these emails, change your notification settings at https://github.com/bluez/bluez/settings/notifications
