mirror of
https://gitlab.com/cryptsetup/cryptsetup.git
synced 2025-12-24 09:10:07 +01:00
d68d981f36
It is possible to overflow integers during memory allocation with insanely large "key bytes" specified in a LUKS header. Although it could be argued to properly validate LUKS headers while parsing them, it's still a good idea to fix any form of possible overflow attacks against cryptsetup in these allocation functions.
5.5 KiB
5.5 KiB