Skip to content

Fix possible memcpy length overflow in wolfSSL_d2i_ASN1_INTEGER#10861

Merged
dgarske merged 1 commit into
wolfSSL:masterfrom
padelsbach:asn-integer-overflow-copy
Jul 8, 2026
Merged

Fix possible memcpy length overflow in wolfSSL_d2i_ASN1_INTEGER#10861
dgarske merged 1 commit into
wolfSSL:masterfrom
padelsbach:asn-integer-overflow-copy

Conversation

@padelsbach

@padelsbach padelsbach commented Jul 8, 2026

Copy link
Copy Markdown
Contributor

Description

Fixes possibility of a buffer overrun due to signed integer overflow.

Credit to SecBuddyF, Tencent KeenLab for reporting.

Fixes zd 22108.

Testing

Added unit test

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

@padelsbach padelsbach force-pushed the asn-integer-overflow-copy branch from a11a312 to f842e33 Compare July 8, 2026 00:41
@padelsbach

padelsbach commented Jul 8, 2026

Copy link
Copy Markdown
Contributor Author

jenkins retest this please

@wolfSSL-Fenrir-bot wolfSSL-Fenrir-bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fenrir Automated Review — PR #10861

Scan targets checked: wolfssl-bugs, wolfssl-src

No new issues found in the changed files. ✅

@dgarske dgarske merged commit a4aab71 into wolfSSL:master Jul 8, 2026
310 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants