[Rpm-maint] [rpm-software-management/rpm] Reduce undefined pointer arithmetic (#1710)

Demi Marie Obenour notifications at github.com
Fri Jun 18 09:02:17 UTC 2021


@DemiMarie commented on this pull request.



> @@ -525,9 +525,9 @@ static int pgpPrtSigParams(pgpTag tag, uint8_t pubkey_algo, uint8_t sigtype,
     int i;
     pgpDigAlg sigalg = pgpSignatureNew(pubkey_algo);
 
-    for (i = 0; i < sigalg->mpis && p + 2 <= pend; i++) {
+    for (i = 0; i < sigalg->mpis && 2 <= pend - p; i++) {

Will fix, thanks!  

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1710#discussion_r654266555
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20210618/9ed17e2c/attachment.html>


More information about the Rpm-maint mailing list