Assertion failure in Libksba's ocsp.c
Testing, NormalPublic
Actions

Assigned To

None

Authored By

	• werner
	Wed, Feb 18, 8:39 AM

Description

Reported-by: Jonathan Bar Or

The issue is a heap OOB read when parsing OCSP, and can only be
triggered via NDEBUG (i.e. "release") builds.
Generally speaking, there are many cases when assert() calls continue,
and in NDEBUG, assert() calls are not compiled, and simply
fallen-through.

Although the use of NDEBUG is never a good idea, the assert should not be triggred.

Revisions and Commits

rK libksba
	rK49a33f98ae4e Do not let the assert do the work of the previous test.

Event Timeline

• werner triaged this task as Normal priority.Wed, Feb 18, 8:39 AM

• werner created this task.

• werner created this object with edit policy "Contributor (Project)".

• werner added a commit: rK49a33f98ae4e: Do not let the assert do the work of the previous test..Wed, Feb 18, 8:47 AM

• werner changed the task status from Open to Testing.Wed, Feb 18, 9:39 AM

Assertion failure in Libksba's ocsp.cTesting, NormalPublicActions

Description

Revisions and Commits

Event Timeline

Assertion failure in Libksba's ocsp.c
Testing, NormalPublic
Actions