]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 371f09d) | patch
Add more dump.c bounds checks 1206/head
authorGreg Hudson <ghudson@mit.edu>
Tue, 3 Aug 2021 03:15:12 +0000 (23:15 -0400)
committerGreg Hudson <ghudson@mit.edu>
Wed, 25 Aug 2021 21:31:05 +0000 (17:31 -0400)
commitd15930bec22781473c2eaf72c08a145508b373ba
treef8f4c370aea690423490b81365b8714910db8e83tree
parent371f09d4bf4ca0c7ba15c5ef909bc35307ed9cc3commit | diff
Add more dump.c bounds checks

Although dump files are privileged inputs, the code to read them
should not admit integer overflows.  Add bounds checks for several
fields which are used as allocation lengths or are assigned to
structure fields of smaller size and different signedness.  Reported
by Sharwan Ram and Kihong Keo.

ticket: 9022
src/kadmin/dbutil/dump.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git