[Interest] Is it safe to use QDataStream to parse data from untrusted source?
thiago.macieira at intel.com
Thu May 12 18:27:06 CEST 2022
On Thursday, 12 May 2022 08:30:16 PDT Alexander Dyagilev wrote:
> Is it safe to use QDataStream? E.g. can it crash / stack overflow / etc.
> on malformed data?
It's not safe.
The XML, CBOR, and JSON parsers can parse untrusted data and are tested by the
Google Fuzzer project to ensure we keep them that way.
Thiago Macieira - thiago.macieira (AT) intel.com
Cloud Software Architect - Intel DCAI Cloud Engineering
More information about the Interest