[Rpm-maint] [rpm-software-management/rpm] Fix IMA signature fubar, take III (#1833, RhBug:2018937) (PR #1914)
Demi Marie Obenour
notifications at github.com
Tue Feb 8 15:00:16 UTC 2022
> While you're fixing things, hex2bin does not check if the strings are correctly sized and will happily read after the string ends...
Good point. Also base2bin will happily try to allocate gigabytes of memory if there is one huge fsverity signature and a bunch of smaller ones.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1914#issuecomment-1032703019
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/pull/1914/c1032703019 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20220208/8ad31d44/attachment.html>
More information about the Rpm-maint
mailing list