diff mbox series

libtasn1: CVE-2021-46848

Message ID 3616fbec-59d8-c17b-3a8e-0f55299c6684@chocky.org
State Not Applicable
Delegated to: Petr Štetiar
Headers show
Series libtasn1: CVE-2021-46848 | expand

Commit Message

Peter Naulls Nov. 7, 2022, 3:09 p.m. UTC 
On 11/3/22 12:01, Etienne Champetier wrote:
> Hi Peter,
> 
> Can you resend this as a proper patch ready to be applied ?
> Or as a PR on Github if this is easier for you ?
> 

Sorry, retry. I wasn't 100% sure of the filename setup for submitted
patches. I've got a couple more to come.

As per:

https://nvd.nist.gov/vuln/detail/CVE-2021-46848

Comments

Karl Palsson Nov. 8, 2022, 9:23 a.m. UTC | #1 
This is superseded by
https://github.com/openwrt/packages/commit/b1d112c5d2a1bba095033a59a761f50216840a4e
anyway.

Peter Naulls <peter@chocky.org> wrote:
> On 11/3/22 12:01, Etienne Champetier wrote:
> > Hi Peter,
> > 
> > Can you resend this as a proper patch ready to be applied ?
> > Or as a PR on Github if this is easier for you ?
> > 
> 
> Sorry, retry. I wasn't 100% sure of the filename setup for
> submitted patches. I've got a couple more to come.
>
diff mbox series

Patch

--- a/lib/int.h	2022-11-03 10:15:01.065656767 -0400
+++ b/lib/int.h	2022-11-03 10:15:39.333658083 -0400
@@ -97,7 +97,7 @@ 
  #define ETYPE_TAG(etype) (_asn1_tags[etype].tag)
  #define ETYPE_CLASS(etype) (_asn1_tags[etype].class)
  #define ETYPE_OK(etype) (((etype) != ASN1_ETYPE_INVALID && \
-                          (etype) <= _asn1_tags_size && \
+                          (etype) < _asn1_tags_size && \
                            _asn1_tags[(etype)].desc != NULL)?1:0)

  #define ETYPE_IS_STRING(etype) ((etype == ASN1_ETYPE_GENERALSTRING || \