Project-1CE/hardware_interfaces - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Edwin Wong <edwinwong@google.com>	2021-02-02 10:42:38 -0800
committer	Edwin Wong <edwinwong@google.com>	2021-02-26 02:21:32 +0000
commit	ff537c8516e1f8be96264d3c5db3ac084e307566 (patch)
tree	893a78d6376bec39f7d818a8879f66c4def2dd91 /identity/support/src/cppbor_parse.cpp
parent	b64b770489f6aad6eb93102d44dd63d03d2815cb (diff)

[RESTRICT AUTOMERGE] Fix potential decrypt destPtr overflow.

There is a potential integer overflow to bypass the destination base size check in decrypt. The destPtr can then point to the outside of the destination buffer. Test: sts-tradefed sts-tradefed run sts-engbuild-no-spl-lock -m StsHostTestCases --test android.security.sts.Bug_176444622#testPocBug_176444622 Test: push to device with target_hwasan-userdebug build adb shell /data/local/tmp/Bug-17644462264 Bug: 176444622 Bug: 176496353 Change-Id: I71b390846a17aecbb9180865e1f9538b4b464abf

Diffstat (limited to 'identity/support/src/cppbor_parse.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: