[git] KSBA - branch, master, updated. libksba-1.3.4-3-g43f890f
by Werner Koch
cvs at cvs.gnupg.org
Wed May 25 08:18:31 CEST 2016
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "KSBA is a library to access X.509 certificates and CMS data.".
The branch, master has been updated
via 43f890f37b514757db5653608ec59b5a74e8e092 (commit)
from 2a9fc5654df497b91ab9b64e946c1e19371888e5 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 43f890f37b514757db5653608ec59b5a74e8e092
Author: Werner Koch <wk at gnupg.org>
Date: Wed May 25 08:17:13 2016 +0200
Fix OOB read in parse_distribution_point.
* src/cert.c (parse_distribution_point): Check TI.length.
--
GnuPG-bug-id: 2350
Co-authored-by: Pascal Cuoq <cuoq at trust-in-soft.com>
Signed-off-by: Werner Koch <wk at gnupg.org>
diff --git a/src/cert.c b/src/cert.c
index dc97f83..d8dabb6 100644
--- a/src/cert.c
+++ b/src/cert.c
@@ -1586,6 +1586,8 @@ parse_distribution_point (const unsigned char *der, size_t derlen,
unsigned int bits, mask;
int i, unused, full;
+ if (!ti.length || ti.length > derlen)
+ return gpg_error (GPG_ERR_ENCODING_PROBLEM);
unused = *der++; derlen--;
ti.length--;
if ((!ti.length && unused) || unused/8 > ti.length)
-----------------------------------------------------------------------
Summary of changes:
src/cert.c | 2 ++
1 file changed, 2 insertions(+)
hooks/post-receive
--
KSBA is a library to access X.509 certificates and CMS data.
http://git.gnupg.org
More information about the Gnupg-commits
mailing list