ASN1/BER: fix signed integer overflow (#1660) - libndpi.git - Open Source Deep Packet Inspection Software Toolkit

diff options

author	Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>	2022-07-12 18:39:05 +0200
committer	GitHub <noreply@github.com>	2022-07-12 18:39:05 +0200
commit	407155755da29734e9b8a8e7a6960c568b1d3188 (patch)
tree	9f54b2b2a387f06d6a02207d98c186b5f068b017 /rrdtool/rrd_similarity.c
parent	9c235796af60977ba316c612d4a02014896127f8 (diff)

ASN1/BER: fix signed integer overflow (#1660)

``` protocols/snmp_proto.c:77:23: runtime error: signed integer overflow: 6 + 2147483647 cannot be represented in type 'int' #0 0x52f69e in ndpi_search_snmp ndpi/src/lib/protocols/snmp_proto.c:77:23 #1 0x4c5347 in check_ndpi_detection_func ndpi/src/lib/ndpi_main.c:5211:4 #2 0x4c5591 in ndpi_check_flow_func ndpi/src/lib/ndpi_main.c:0 #3 0x4c8903 in ndpi_detection_process_packet ndpi/src/lib/ndpi_main.c:6145:15 #4 0x4b3712 in LLVMFuzzerTestOneInput ndpi/fuzz/fuzz_process_packet.c:29:5 [...] ``` Found by oss-fuzzer. See: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49057

Diffstat (limited to 'rrdtool/rrd_similarity.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: