Project-1CE/hardware_interfaces - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Edwin Wong <edwinwong@google.com>	2021-02-02 22:28:41 -0800
committer	Edwin Wong <edwinwong@google.com>	2021-02-25 17:55:20 +0000
commit	9191787d0e73712608eff22fca9aea9480d4691e (patch)
tree	08a1416731fcab5a42482d958e63768db2dd6a73 /identity/support/src/cppbor_parse.cpp
parent	e42109b559280b4a7d3f4551ed5298edc73eb7db (diff)

Fix potential decrypt destPtr overflow.

There is a potential integer overflow to bypass the destination base size check in decrypt. The destPtr can then point to the outside of the destination buffer. Test: sts-tradefed sts-tradefed run sts-engbuild-no-spl-lock -m StsHostTestCases --test android.security.sts.Bug_176444622#testPocBug_176444622 Test: push to device with target_hwasan-userdebug build adb shell /data/local/tmp/Bug-17644462264 Bug: 176444622 Bug: 176496353 Change-Id: I63043d10796f82ad805038ba1fad5bd7d5c89961 Merged-In: I63043d10796f82ad805038ba1fad5bd7d5c89961

Diffstat (limited to 'identity/support/src/cppbor_parse.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: