[openssl/openssl] 500662: Fix coverity-1604661

Neil Horman Thu, 18 Jul 2024 10:10:06 -0700

  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: 50066236eb3b31c93aaa935ca38f5cc1ec056696
      
https://github.com/openssl/openssl/commit/50066236eb3b31c93aaa935ca38f5cc1ec056696
  Author: Neil Horman <nhor...@openssl.org>
  Date:   2024-07-18 (Thu, 18 Jul 2024)


  Changed paths:
    M apps/asn1parse.c

  Log Message:
  -----------
  Fix coverity-1604661

Coverity called out an error in asn1parse_main, indicating that the
for(;;) loop which repeatedly reads from a bio and updates the length
value num, may overflow said value prior to exiting the loop.

We could probably call this a false positive, but on very large PEM
file, I suppose it could happen, so just add a check to ensure that num
doesn't go from a large positive to a large negative value inside the
loop

Fixes openssl/private#571

Reviewed-by: Tom Cosgrove <tom.cosgr...@arm.com>
Reviewed-by: Tomas Mraz <to...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24910)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications

[openssl/openssl] 500662: Fix coverity-1604661

Reply via email to