Changeset 1f37eba for zcrypt.c


Ignore:
Timestamp:
Feb 9, 2010, 9:49:51 PM (15 years ago)
Author:
Anders Kaseorg <andersk@mit.edu>
Branches:
master, release-1.10, release-1.6, release-1.7, release-1.8, release-1.9
Children:
f61e7ac
Parents:
9be80b5
git-author:
Anders Kaseorg <andersk@mit.edu> (02/08/10 22:35:46)
git-committer:
Anders Kaseorg <andersk@mit.edu> (02/09/10 21:49:51)
Message:
zcrypt: Don’t read off the end of misaligned input messages.

This fixes an input buffer overflow noticed by asedeno and andersk.

Signed-off-by: Anders Kaseorg <andersk@mit.edu>
Reviewed-by: Nelson Elhage <nelhage@mit.edu>
File:
1 edited

Legend:

Unmodified
Added
Removed
  • zcrypt.c

    rae50abc r1f37eba  
    113113
    114114  inptr=in;
    115   endptr=in+strlen(in)-1;
    116   while (inptr<endptr) {
     115  endptr = in + strlen(in);
     116  while (inptr + 16 <= endptr) {
    117117    for (i=0; i<8; i++) {
    118118      c1=(inptr[0])-BASE_CODE;
Note: See TracChangeset for help on using the changeset viewer.