[Bug 3732] New: An integer underflow may occur due to arithmetic operation (unsigned subtraction) between values '0' and '67108864', where the first value comes from the expression 'h4 + b' and the second value comes from the expression '(1 << 26)'

bugzilla-daemon Wed, 11 Sep 2024 04:26:06 -0700

https://bugzilla.mindrot.org/show_bug.cgi?id=3732


            Bug ID: 3732
           Summary: An integer underflow may occur due to arithmetic
                    operation (unsigned subtraction) between values '0'
                    and '67108864', where the first value comes from the
                    expression 'h4 + b' and the second value comes from
                    the expression '(1 << 26)'
           Product: Portable OpenSSH
           Version: 9.8p1
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: security
          Priority: P5
         Component: Build system
          Assignee: [email protected]
          Reporter: [email protected]

File:
https://github.com/openssh/openssh-portable/blob/master/poly1305.c
Line: 140

The expression g4 = h4 + b - (1 << 26); may cause an overflow if the
value of h4 + b is less than 67108864, which is equivalent to 1 << 26.
Overflow when working with unsigned numbers will lead to an incorrect
result, which may affect further operation of the algorithm.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
[email protected]
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

[Bug 3732] New: An integer underflow may occur due to arithmetic operation (unsigned subtraction) between values '0' and '67108864', where the first value comes from the expression 'h4 + b' and the second value comes from the expression '(1 << 26)'

Reply via email to