Home GnuPG
Diffusion libgcrypt 862cf19a1194

mpi: Explicitly limit the allowed input length for gcry_mpi_scan.
862cf19a1194Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

mpi: Explicitly limit the allowed input length for gcry_mpi_scan.

* mpi/mpicoder.c (MAX_EXTERN_SCAN_BYTES): New.
(mpi_fromstr): Check against this limit.
(_gcry_mpi_scan): Ditto.
* tests/mpitests.c (test_maxsize): New.
(main): Cal that test.

A too large buffer length may lead to an unsigned integer overflow on
systems where size_t > unsigned int (ie. 64 bit systems). The
computation of the required number of nlimbs may also be affected by
this. However this is not a real world case because any processing
which has allocated such a long buffer from an external source would
be prone to other DoS attacks: The required buffer length to exhibit
this overflow is at least 2^32 - 8 bytes.

  • Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance
wernerAuthored on Apr 1 2016, 1:42 PM
Parents
rCfcce0cb6e8af: cipher: Remove specialized rmd160 functions.
Branches
Unknown
Tags
Unknown

Event Timeline

Werner Koch <wk@gnupg.org> committed rC862cf19a1194: mpi: Explicitly limit the allowed input length for gcry_mpi_scan. (authored by Werner Koch <wk@gnupg.org>).Apr 1 2016, 1:49 PM

Changes (3)

PathSize
doc/
mpi/
tests/

rC862cf19a1194

View Options

doc/gcrypt.texi

Loading...
View Options

mpi/mpicoder.c

Loading...
View Options

tests/mpitests.c

Loading...