1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-12-22 10:19:57 +01:00
David Shaw 91dbfce3b7 * parse-packet.c (parse_user_id): Cap the user ID size at 2048 bytes.
This prevents a memory allocation attack with a very large user ID.  A
very large packet length could even cause the allocation (a u32) to wrap
around to a small number.  Noted by Evgeny Legerov on full-disclosure.
2006-06-09 19:45:19 +00:00
..
2005-10-27 09:14:27 +00:00
2006-02-14 16:28:34 +00:00
2006-02-06 16:34:20 +00:00
2005-07-27 18:10:56 +00:00
2005-07-27 18:10:56 +00:00
2006-05-27 02:07:05 +00:00
2005-07-27 18:10:56 +00:00
2005-07-27 18:10:56 +00:00
2005-07-27 18:10:56 +00:00
2006-04-08 01:23:23 +00:00
2006-03-22 16:43:59 +00:00
2006-04-03 10:13:23 +00:00
2005-10-05 16:58:50 +00:00
2006-03-30 23:55:45 +00:00
2005-07-27 18:10:56 +00:00
2006-04-03 10:13:23 +00:00
2006-04-03 10:13:23 +00:00
2005-07-27 18:10:56 +00:00
2006-04-03 10:13:23 +00:00