adb: adb_walk_adb fix out of boundary write - apk-tools - Adélie Linux patches for Alpine Package Keeper (apk-tools)

diff options

author	Timo Teräs <timo.teras@iki.fi>	2021-07-26 10:15:55 +0300
committer	Timo Teräs <timo.teras@iki.fi>	2021-07-26 10:19:20 +0300
commit	62e1cba691fa101e94d23728022bfd8353947c50 (patch)
tree	8c430dbf223983d2f66e496180d9efaab6e74bb6 /src/app_mkpkg.c
parent	90228c4d2626e995de3a62c0c46e8bad070deaad (diff)
download	apk-tools-62e1cba691fa101e94d23728022bfd8353947c50.tar.gz apk-tools-62e1cba691fa101e94d23728022bfd8353947c50.tar.bz2 apk-tools-62e1cba691fa101e94d23728022bfd8353947c50.tar.xz apk-tools-62e1cba691fa101e94d23728022bfd8353947c50.zip

adb: adb_walk_adb fix out of boundary write

If a signature is longer than max allowed adb signature length then adb_walk_block writes out of boundary of stack variable tmp. The len += snprintf is not safe per standard snprintf implementation (kernel does it differently). Introduce and use apk_blob_push_fmt which does the checking better. Fixes #10752 Reported-by: Samanta Navarro <ferivoz@riseup.net>

Diffstat (limited to 'src/app_mkpkg.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: