[gnutls-devel] GnuTLS | Fix gnutls_pkcs11_token_get_info for short output buffers and fix a memleak (!827)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Nov 30 08:14:00 CET 2018

Nikos Mavrogiannopoulos started a new discussion on lib/pkcs11.c:

>  		len = p11_kit_space_strlen(str, str_max);
>  	if (len + 1 > *output_size) {
> -		*output_size = len + 1;

Nice catch. Indeed this is incorrect behavior as an application will not be able to allocate the right amount of data. It is "breaking" the ABI, but according to debian code search this function is not yet used. So the risk of fixing this issue is quite low.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/827#note_121285973
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181130/6dfdacf1/attachment.html>

More information about the Gnutls-devel mailing list