1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-12-23 10:29:58 +01:00
Werner Koch 0aac920f23
gpg: Fix DoS while parsing mangled secret key packets.
* g10/parse-packet.c (parse_key): Check PKTLEN before calling mpi_read
et al.
--

Due to the missing length checks PKTLEN may turn negative.  Because
PKTLEN is an unsigned int the malloc in read_rest would try to malloc
a too large number and terminate the process with "error reading rest
of packet: Cannot allocate memory".

Reported-by: Hanno Böck.
Signed-off-by: Werner Koch <wk@gnupg.org>
(backported from 2.1 commit d901efcebaefaf6eae4a9b9aa8f0c2c055d3518a)
2015-04-05 19:33:36 +02:00
..
2015-02-26 09:38:58 +01:00
2009-12-21 16:19:09 +00:00
2009-09-03 11:29:25 +00:00
2007-07-04 19:49:40 +00:00
2007-07-04 19:49:40 +00:00
2015-03-11 14:59:25 +01:00
2015-02-18 14:20:21 +01:00
2007-07-04 19:49:40 +00:00
2009-12-21 16:19:09 +00:00
2007-07-04 19:49:40 +00:00
2009-09-03 20:51:55 +00:00
2007-07-04 19:49:40 +00:00
2007-07-04 19:49:40 +00:00
2009-06-05 14:11:03 +00:00
2008-12-12 12:01:20 +00:00
2008-12-12 08:54:50 +00:00
2009-06-05 14:11:03 +00:00
2009-05-26 09:29:02 +00:00