sm: Fix a bug in the rfc2253 parser
d2fe2ffd7537
Actions

Edit Commit
Download Raw Diff
Edit Related Objects...
Edit Revisions
Edit Tasks
Mute Notifications
Award Token

Description

sm: Fix a bug in the rfc2253 parser

* sm/certdump.c (parse_dn_part): Fix parser flaw.

This could in theory result in reading bytes after a after Nul in a
string and thus possible segv on unallocated memory or reading other
parts of the memory. However, it is harmless because the rfc2253
strings have been constructed by libksba.

GnuPG-bug-id: T5037
Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

• werner

Authored on Aug 28 2020, 9:07 AM

Parents

rGf799b3ddbb4a: Post release updates

Branches

Unknown

Tags

Unknown

Tasks

T5037: dn.cpp:181: suspicious loop

Event Timeline

• werner committed rGd2fe2ffd7537: sm: Fix a bug in the rfc2253 parser (authored by • werner).Aug 28 2020, 9:09 AM

• werner added a task: T5037: dn.cpp:181: suspicious loop.

Changes (1)

Path

Size

sm/

certdump.c

rGd2fe2ffd7537

View Options