kotovalexarian-likes-github/ruby--ruby
1
0
Fork 0
mirror of https://github.com/ruby/ruby.git synced 2022-11-09 12:17:21 -05:00
Code Releases Activity
ruby--ruby/spec/ruby/security/cve_2018_8778_spec.rb
Benoit Daloze 5c276e1cc9 Update to ruby/spec@875a09e
2019-07-27 12:40:09 +02:00

12 lines
348 B
Ruby
Raw Blame History

require_relative '../spec_helper'
describe "String#unpack" do
it "resists CVE-2018-8778 by raising an exception when a position indicator is larger than a native integer" do
pos = (1 << PlatformGuard::POINTER_SIZE) - 99
-> {
"0123456789".unpack("@#{pos}C10")
}.should raise_error(RangeError, /pack length too big/)
end
end
View git blame Copy permalink