mirror of
https://github.com/Qortal/altcoinj.git
synced 2025-02-07 14:54:15 +00:00
9f25af54ab
Bitcoinj can be crashed with OutOfMemory by sending a message with a large claimed var_str length or bytes array length. The actual message size does not matter, it's the claimed length that matters. This affects all bitcoinj-based apps that receive messages including Multibit, Android Bitcoin Wallet, Mycelium and Hive. The fix limits accepted length to max message size (32 MB). Signed-off-by: Mike Hearn <mike@plan99.net>