Re: [OpenCA-Devel] Integer overflow

Michael Bell Wed, 05 Oct 2005 00:09:22 -0700

Alexei Chetroi wrote:

Openca 0.9.2.2
Openssl 0.9.7
Integer overflow in hexadecimal number at /usr/local/ca001_pki/modules/perl5/OpenCA/PKCS7.pm line 392.
Do you have a test system where you can try the attached patch? It is only a quick fix for the reported error.
+                my $serial_obj = Math::BigInt->new ($serial);


                                                      ^^^^^ - I think
this is not quite correct. IMHO it should be:
 Math::BigInt->new ('0x'.$serial);

+               $ret->{$currentDepth}->{SERIAL} = $serial_obj->bstr();
                $ret->{$currentDepth}->{DN} = $dn;
                if ($self->{DEBUG})
                {

You are correct. the problem is that I have no actual testsystem for this :( Chris, can you modify the patch by yourself?


Thanks Michael
--
_______________________________________________________________

Michael Bell                    Humboldt-Universitaet zu Berlin

Tel.: +49 (0)30-2093 2482       ZE Computer- und Medienservice
Fax:  +49 (0)30-2093 2704       Unter den Linden 6
[EMAIL PROTECTED]   D-10099 Berlin
_______________________________________________________________

smime.p7s
Description: S/MIME Cryptographic Signature

Re: [OpenCA-Devel] Integer overflow

Reply via email to