Project-1CE/hardware_interfaces - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Edwin Wong <edwinwong@google.com>	2021-02-02 10:04:02 -0800
committer	Edwin Wong <edwinwong@google.com>	2021-02-02 23:48:11 -0800
commit	d468101f149e30bc4ec5105555973d4ed8b4e009 (patch)
tree	675788b10987a0874fe2c0ba13c49742c60fbff6 /identity/support/src/cppbor_parse.cpp
parent	072cdf233c02d1dc3eb8b2e20498675aea70c21d (diff)

[RESTRICT AUTOMERGE] Fix potential decrypt destPtr overflow.

There is a potential integer overflow to bypass the destination base size check in decrypt. The destPtr can then point to the outside of the destination buffer. Test: sts-tradefed sts-tradefed run sts-engbuild-no-spl-lock -m StsHostTestCases --test android.security.sts.Bug_176444622#testPocBug_176444622 Test: push to device with target_hwasan-userdebug build adb shell /data/local/tmp/Bug-17644462264 Bug: 176444622 Bug: 176496353 Change-Id: I75ae057793a4ff4e4f52a8577bef189ad842fb0e

Diffstat (limited to 'identity/support/src/cppbor_parse.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: