)]}'
{
  "commit": "eee138fb4b8046ac0e18e175c0e3abab160f0e94",
  "tree": "e1da1a2af2537068931fa78414032d68e7d67b09",
  "parents": [
    "2c24ca4cf661e76929860e42446d3a31a638532e"
  ],
  "author": {
    "name": "Lovepreet Singh",
    "email": "lpsingh@google.com",
    "time": "Wed Jun 03 20:48:25 2026 +0000"
  },
  "committer": {
    "name": "Lovepreet Singh",
    "email": "lpsingh@google.com",
    "time": "Wed Jun 03 20:57:23 2026 +0000"
  },
  "message": "Integer overflow check in writes to session buffer\n\nThe current logic for writing to hoth blob session buffer can run into\nout-of-bounds memory access when `data` and `offset` are controlled by\nan attacker.\n\nThis change adds additional check to avoid the overflow (and hence the\nout-of-bounds memory access). This change also moves handling for empty\n`data` earlier in the code\n\nGoogle-Bug-Id\u003d517927802\nChange-Id: Ib03fdb69d94e9820eac715544b84cf755cf754e5\nSigned-off-by: Lovepreet Singh \u003clpsingh@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "d3918e775ceb259999c0fd868f0032d55a261371",
      "old_mode": 33188,
      "old_path": "hoth.cpp",
      "new_id": "5ea8a5ce2ea50f902e56310e5d27afd52e6854e6",
      "new_mode": 33188,
      "new_path": "hoth.cpp"
    }
  ]
}