fix: security vulnerabilities (#1980)

* fix: security vulnerabilities Tested that all functions related to the touched files work will test sqlite on a CI build * fix failing test * ai feedback * add buffer size checking * use c_str * dont log session key * Try this for a mac definition * be quiet apple
2026-06-09 00:04:22 +00:00 · 2026-06-07 20:59:11 -07:00
parent f6c9a27a2b
commit a156a8fcba
109 changed files with 806 additions and 514 deletions
--- a/dNavigation/dTerrain/RawChunk.cpp
+++ b/dNavigation/dTerrain/RawChunk.cpp
@@ -18,6 +18,7 @@ RawChunk::RawChunk(std::ifstream& stream) {

 	// We can just skip the rest of the data so we can read the next chunks, we don't need anymore data

+	// Possible overflow here? TODO make reasonable upper bound or confirm big numbers arent necessary to have
 	uint32_t colorMapSize;
 	BinaryIO::BinaryRead(stream, colorMapSize);
 	stream.seekg(static_cast<uint32_t>(stream.tellg()) + (colorMapSize * colorMapSize * 4));