| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Fix heap overflow in ECC point multiplication | Jack Lloyd | 2016-02-01 | 1 | -0/+11 |
| | | | | | | | | | | | | | | | If affine coordinates larger than the prime modulus were given, a later multiplication could overflow the size of an allocated output buffer, which was sized based on the size of the prime. This will cause an overflow into either the system heap or if the mlock/mmap pool allocator is in use, then into the adjacent key material stored in the pool. Reported by Alex Gaynor who found it with AFL Also fix a one word overwrite in P-521 reduction. Found with AFL | ||||
| * | Fix two crashes in the BER decoder found with afl. | Jack Lloyd | 2015-08-02 | 53 | -0/+316 |
| One a read at 0 of an empty vector, the other causing allocation of an arbitrary amount of memory. | |||||
 |
index : botan.git | |
| Unnamed repository; edit this file 'description' to name the repository. |
| aboutsummaryrefslogtreecommitdiffstats |