Menu
▾
▴
[Opensc-commits] [OpenSC/OpenSC] 09531d: cac: Avoid stack overflow on infinite recursion in...
|
From: Jakub J. <no...@gi...> - 2020-02-04 12:57:25
|
Branch: refs/heads/master Home: https://github.com/OpenSC/OpenSC Commit: 09531d720a5e955d6c9307a33d0240ead892768f https://github.com/OpenSC/OpenSC/commit/09531d720a5e955d6c9307a33d0240ead892768f Author: Jakub Jelen <jj...@re...> Date: 2020-02-04 (Tue, 04 Feb 2020) Changed paths: M src/libopensc/card-cac.c Log Message: ----------- cac: Avoid stack overflow on infinite recursion in CCC chaining Thanks oss-fuzz Fixes: #1920 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19725 Commit: 2a0f53dd4f7d8db2b1b320223655f7041205438a https://github.com/OpenSC/OpenSC/commit/2a0f53dd4f7d8db2b1b320223655f7041205438a Author: Jakub Jelen <jj...@re...> Date: 2020-02-04 (Tue, 04 Feb 2020) Changed paths: M src/libopensc/card-coolkey.c Log Message: ----------- coolkey: Avoid heap buffer overflow for malformend combinded objects, the ID and header were parsed before making sure we have at least that lenght available. Thanks oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20131 Commit: 63435adc68ae3f0a83f89351f70a329a5d9c2953 https://github.com/OpenSC/OpenSC/commit/63435adc68ae3f0a83f89351f70a329a5d9c2953 Author: Jakub Jelen <jj...@re...> Date: 2020-02-04 (Tue, 04 Feb 2020) Changed paths: M src/libopensc/card-coolkey.c Log Message: ----------- coolkey: Do not return bogus error if read already failed Compare: https://github.com/OpenSC/OpenSC/compare/e9308a201135...63435adc68ae |
