nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-10 01:48:00 +00:00
Code Issues Projects Releases Wiki Activity

Add some missing bounds checks in signature verification routines.

Browse Source 
[originally from svn r9978]
This commit is contained in:
Simon Tatham 2013-08-02 06:27:56 +00:00
parent e01104f899
commit 6184e9f95d
2 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
sshdss.c
View File

@ -72,6 +72,9 @@ static Bignum get160(char **data, int *datalen)
{ {
Bignum b; Bignum b;
if (*datalen < 20)
return NULL;
b = bignum_from_bytes((unsigned char *)*data, 20); b = bignum_from_bytes((unsigned char *)*data, 20);
*data += 20; *data += 20;
*datalen -= 20; *datalen -= 20;

2
sshrsa.c
View File

@ -842,6 +842,8 @@ static int rsa2_verifysig(void *key, char *sig, int siglen,
return 0; return 0;
} }
in = getmp(&sig, &siglen); in = getmp(&sig, &siglen);
if (!in)
return 0;
out = modpow(in, rsa->exponent, rsa->modulus); out = modpow(in, rsa->exponent, rsa->modulus);
freebn(in); freebn(in);