Home Explore Help
Sign In
c
/
libtom.libtomcrypt
mirror of https://github.com/libtom/libtomcrypt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

signal a potential overflow when decoding a `LTC_ASN1_SHORT_INTEGER`

Signed-off-by: Steffen Jaeckel <[email protected]>
Steffen Jaeckel 3 years ago
parent
8899c81601
commit
3bf3dffabc
1 changed files with 4 additions and 0 deletions
Split View Show Diff Stats
  1. 4 0
      src/pk/asn1/der/short_integer/der_decode_short_integer.c

+ 4 - 0
src/pk/asn1/der/short_integer/der_decode_short_integer.c
View File 

@@ -42,6 +42,10 @@ int der_decode_short_integer(const unsigned char *in, unsigned long inlen, unsig
 
       return CRYPT_INVALID_PACKET;
 
    }
 
 
+   if (len > sizeof(unsigned long)) {
 
+      return CRYPT_OVERFLOW;
 
+   }
 
+
 
    /* read number */
 
    y = 0;
 
    while (len--) {