-
Notifications
You must be signed in to change notification settings - Fork 700
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
OLE2: Fix bounds check on OLE2 encryption info check
The checks for the encryption info cspName and encryption verifier don't have the size of the overall file available for the check and may overflow. This commit passes in the size of the file to the initialize_encryption_key() function and does all size checks within that function instead of doing the overall size check before that function. Resolves: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60563
- Loading branch information
1 parent
cec59d7
commit 6e11fc3
Showing
2 changed files
with
80 additions
and
67 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters