Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15-SP7:GA
gnutls.32646
gnutls-CVE-2021-4209.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File gnutls-CVE-2021-4209.patch of Package gnutls.32646
From 3db352734472d851318944db13be73da61300568 Mon Sep 17 00:00:00 2001 From: Daiki Ueno <ueno@gnu.org> Date: Wed, 22 Dec 2021 09:12:25 +0100 Subject: [PATCH] wrap_nettle_hash_fast: avoid calling _update with zero-length input As Nettle's hash update functions internally call memcpy, providing zero-length input may cause undefined behavior. Signed-off-by: Daiki Ueno <ueno@gnu.org> --- lib/nettle/mac.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/lib/nettle/mac.c b/lib/nettle/mac.c index f9d4d7a8df..35e070fab0 100644 --- a/lib/nettle/mac.c +++ b/lib/nettle/mac.c @@ -788,7 +788,9 @@ static int wrap_nettle_hash_fast(gnutls_digest_algorithm_t algo, if (ret < 0) return gnutls_assert_val(ret); - ctx.update(&ctx, text_size, text); + if (text_size > 0) { + ctx.update(&ctx, text_size, text); + } ctx.digest(&ctx, ctx.length, digest); return 0; -- GitLab
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor