rpms / nss

Clone
Source Code
GIT

Blame SOURCES/nss-3.44-handle-malformed-ecdh.patch

c4 c5 c5-plus c6 c6-plus c7 c7-aarch64 c7-alt c7-beta c8 c8-beta c8-sig-altarch-armhfp c8s c9 c9-beta
  1.   c7-beta
  2.   SOURCES
  3.   nss-3.44-handle-malformed-ecdh.patch
Blob History Raw
a6c4ed 
diff --git a/lib/cryptohi/seckey.c b/lib/cryptohi/seckey.c
a6c4ed 
--- a/lib/cryptohi/seckey.c
a6c4ed 
+++ b/lib/cryptohi/seckey.c
a6c4ed 
@@ -639,6 +639,11 @@
a6c4ed 
                     return pubk;
a6c4ed 
                 break;
a6c4ed 
             case SEC_OID_ANSIX962_EC_PUBLIC_KEY:
a6c4ed 
+                /* A basic sanity check on inputs. */
a6c4ed 
+                if (spki->algorithm.parameters.len == 0 || newOs.len == 0) {
a6c4ed 
+                    PORT_SetError(SEC_ERROR_INPUT_LEN);
a6c4ed 
+                    break;
a6c4ed 
+                }
a6c4ed 
                 pubk->keyType = ecKey;
a6c4ed 
                 pubk->u.ec.size = 0;

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation