Handle odd buffer lengths in checksum
Bug #1511108 reported by
Linn Crosetto
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sbsigntool (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
Buffers of odd length can be passed to the checksum, for example signatures. This results in reading 1 byte beyond the buffer and can produce an incorrect checksum if the extra byte is non-zero.
Attaching a patch changing csum_bytes() to prevent overflowing the buffer, while taking the extra byte into account if the length is odd. Tested with a UEFI binary containing an odd-length signature, and also detach/attach on a binary signed with Microsoft signtool.
Changed in sbsigntool (Ubuntu): | |
importance: | Undecided → Medium |
To post a comment you must log in.
The attachment "0001-Handle- odd-buffer- lengths- in-checksum. patch" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team.
[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.]