small stack overflow by memcpy

Brought to you by: imipak, niemeyer, nmav, sunheng

#1 small stack overflow by memcpy

Status: open

Owner: Jonathan Day

Labels: Not Otherwise Specified (2)

Priority: 9

Updated: 2012-09-14

Created: 2005-04-27

Creator: Marcus Meissner

Private: No

in rfc2440.c there is a small memory overflow of a buffer
which has 1 byte less than required.

Ciao, Marcus

Discussion

Marcus Meissner - 2005-04-27

mcrypt-2.6.4-overflow.patch

mcrypt-2.6.4-overflow.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Jonathan Day - 2005-06-14

Logged In: YES
user_id=1466

I'm investigating both mcrypt and libmcrypt for other buffer
overflows. Thanks for pointing this one out and offering the
patch!

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Pavol Rusnak - 2008-01-16

Logged In: YES
user_id=1688417
Originator: NO

Marcus notified me that 14 is not enough. Right is "uchar buf[15];"

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.