Tobias Stoeckmann d68d981f36 Avoid integer overflows during memory allocation. ...

It is possible to overflow integers during memory allocation with
insanely large "key bytes" specified in a LUKS header.

Although it could be argued to properly validate LUKS headers while
parsing them, it's still a good idea to fix any form of possible
overflow attacks against cryptsetup in these allocation functions.

2016-10-28 11:54:18 +02:00

11 KiB

Raw Blame History

View Raw