首页 发现 帮助
登录
OWEALs
/
ucert
镜像自地址 https://git.openwrt.org/project/ucert.git
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

fix certificate blob parsing vulnerability by using blob_parse_untrusted

blob_parse expects blobs from trusted inputs, but in this case it can be
supplied with possibly malicious certificates from untrusted inputs as
well, so in order to prevent such conditions, switch to
blob_parse_untrusted which should hopefully handle such inputs
appropriately.

Signed-off-by: Petr Štetiar <ynezz@true.cz>
Petr Štetiar 4 年之前
父节点
19a7225ac0
当前提交
14a279411c
共有 1 个文件被更改,包括 1 次插入1 次删除
分列视图 显示文件统计
  1. 1 1
      ucert.c

+ 1 - 1
ucert.c
查看文件 

@@ -154,7 +154,7 @@ static int cert_load(const char *certfile, struct list_head *chain) {
 
 
 	bufpt = (struct blob_attr *)filebuf;
 
 	do {
 
-		pret = blob_parse(bufpt, certtb, cert_policy, CERT_ATTR_MAX);
 
+		pret = blob_parse_untrusted(bufpt, len, certtb, cert_policy, CERT_ATTR_MAX);
 
 		if (pret <= 0)
 
 			/* no attributes found */
 
 			break;