wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 18:57:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #7058 from lealem47/zd17174

Browse Source 
Check buffer length before XMEMCMP in GetOID
This commit is contained in:
Sean Parkinson
2023-12-13 14:36:23 +10:00
committed by GitHub
parent cbd5341332 2724edc257
commit b7b20ededd
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
wolfcrypt/src/asn.c
View File

@ -5747,7 +5747,8 @@ static int GetOID(const byte* input, word32* inOutIdx, word32* oid,
* *
* These hacks will hopefully disappear when new standardized OIDs appear. * These hacks will hopefully disappear when new standardized OIDs appear.
*/ */
if (memcmp(&input[idx], sigSphincsFast_Level3Oid, if (idx + (word32)sizeof(sigSphincsFast_Level3Oid) < (word32)length &&
XMEMCMP(&input[idx], sigSphincsFast_Level3Oid,
sizeof(sigSphincsFast_Level3Oid)) == 0) { sizeof(sigSphincsFast_Level3Oid)) == 0) {
found_collision = SPHINCS_FAST_LEVEL3k; found_collision = SPHINCS_FAST_LEVEL3k;
} }