crypto: ecdh_helper - Ensure 'len >= secret.len' in decode_key() - linux-crypto.git

diff options

author	Daniele Alessandrelli <daniele.alessandrelli@intel.com>	2021-02-03 11:28:37 +0000
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2021-03-04 10:26:25 +0100
commit	27d3234d07268f255a3e99cde5d4bd54d54da8a9 (patch)
tree	ed36dd8a358c492c377bfd64f0f467f3367b3132 /crypto/tcrypt.c
parent	201d252bae349ab468d9c50ebfeba3e08f98e05f (diff)
download	linux-crypto-27d3234d07268f255a3e99cde5d4bd54d54da8a9.tar.gz linux-crypto-27d3234d07268f255a3e99cde5d4bd54d54da8a9.zip

crypto: ecdh_helper - Ensure 'len >= secret.len' in decode_key()

[ Upstream commit 49397f15495d5f06d87da962adab714720026232 ] The length ('len' parameter) passed to crypto_ecdh_decode_key() is never checked against the length encoded in the passed buffer ('buf' parameter). This could lead to an out-of-bounds access when the passed length is less than the encoded length. Add a check to prevent that. Fixes: e8c7f30611313 ("crypto: ecdh - Add ECDH software support") Signed-off-by: Daniele Alessandrelli <daniele.alessandrelli@intel.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> Signed-off-by: Sasha Levin <sashal@kernel.org>

Diffstat (limited to 'crypto/tcrypt.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: