* [9fans] out of bound access in libsec
@ 2017-01-17 20:59 Giacomo Tesio
0 siblings, 0 replies; only message in thread
From: Giacomo Tesio @ 2017-01-17 20:59 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs, 9front
[-- Attachment #1: Type: text/plain, Size: 556 bytes --]
Hi, running coverity scan on libsec it reported two defects that do not
seem false positives:
1. an out of bound access to aesXCBCmac (see
https://github.com/JehanneOS/jehanne/issues/3 )
2. an out of bound access in msgRecv, tlshand.c:1809 (see
https://github.com/JehanneOS/jehanne/issues/4 )
I verified that the code is more or less the same on 9front.
I "fixed" the first with an assert, but I'm not sure wherther passing
sizeof(m->u.finished.verify) to memset in the second is the correct
solution.
Am I missing something?
Giacomo
[-- Attachment #2: Type: text/html, Size: 940 bytes --]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2017-01-17 20:59 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2017-01-17 20:59 [9fans] out of bound access in libsec Giacomo Tesio
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).