[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH v17 05/20] libtasn1: fix the potential buffer overrun
From: |
Daniel Kiper |
Subject: |
Re: [PATCH v17 05/20] libtasn1: fix the potential buffer overrun |
Date: |
Mon, 17 Jun 2024 17:15:16 +0200 |
On Fri, Jun 14, 2024 at 02:45:38PM +0800, Gary Lin wrote:
> In _asn1_tag_der(), the first while loop for the long form may end up
> with a 'k' value with 'ASN1_MAX_TAG_SIZE' and cause the buffer overrun
> in the second while loop. This commit tweaks the conditional check to
> avoid producing a too large 'k'.
>
> This is a quick fix and may differ from the official upstream fix.
>
> libtasn1 issue: https://gitlab.com/gnutls/libtasn1/-/issues/49
This patch does not need Daniel Axtens SB of course. Sorry for
not being precise.
> Signed-off-by: Gary Lin <glin@suse.com>
Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
Daniel
- [PATCH v17 00/20] Automatic Disk Unlock with TPM2, Gary Lin, 2024/06/14
- [PATCH v17 01/20] posix_wrap: tweaks in preparation for libtasn1, Gary Lin, 2024/06/14
- [PATCH v17 03/20] libtasn1: disable code not needed in grub, Gary Lin, 2024/06/14
- [PATCH v17 02/20] libtasn1: import libtasn1-4.19.0, Gary Lin, 2024/06/14
- [PATCH v17 05/20] libtasn1: fix the potential buffer overrun, Gary Lin, 2024/06/14
- Re: [PATCH v17 05/20] libtasn1: fix the potential buffer overrun,
Daniel Kiper <=
- [PATCH v17 06/20] libtasn1: compile into asn1 module, Gary Lin, 2024/06/14
- [PATCH v17 04/20] libtasn1: changes for grub compatibility, Gary Lin, 2024/06/14
- [PATCH v17 07/20] asn1_test: test module for libtasn1, Gary Lin, 2024/06/14
- [PATCH v17 08/20] libtasn1: Add the documentation, Gary Lin, 2024/06/14