Home GnuPG
Diffusion GnuPG 7a068ac50bc4

gpg: Fix off-by-one read in the attribute subpacket parser.
7a068ac50bc4Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

gpg: Fix off-by-one read in the attribute subpacket parser.

* g10/parse-packet.c (parse_attribute_subpkts): Check that the
attribute packet is large enough for the subpacket type.

(backported from commit 0988764397f99db4efef1eabcdb8072d6159af76)

  • Reported-by: Hanno Böck
  • Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance
wernerAuthored on Nov 24 2014, 7:12 PM
Parents
rG92a7949ae633: gpg: Fix a NULL-deref for invalid input data.
Branches
Unknown
Tags
Unknown

Event Timeline

Werner Koch <wk@gnupg.org> committed rG7a068ac50bc4: gpg: Fix off-by-one read in the attribute subpacket parser. (authored by Werner Koch <wk@gnupg.org>).Nov 24 2014, 7:27 PM

Changes (1)

PathSize
g10/

rG7a068ac50bc4

View Options

g10/parse-packet.c

Loading...