Package: yubikey-personalization / 1.19.3-3+deb10u1

Metadata

Package Version Patches format
yubikey-personalization 1.19.3-3+deb10u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 Clear potentially sensitive material from stack allo.patch | (download)

ykpers.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 clear potentially sensitive material from stack allocated buffer


0002 Tighten the salt_len check to avoid a potential stac.patch | (download)

ykpbkdf2.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 tighten the salt_len check to avoid a potential stack buf overwrite
 further down.

If salt_len was 256:

 for (block_count = 1; block_count <= l; block_count++) {
                unsigned char block[256]; /* A big chunk, that's 2048 bits */
[ ... ]

                memcpy(block, salt, salt_len);
                block[salt_len + 0] = (block_count & 0xff000000) >> 24;
                block[salt_len + 1] = (block_count & 0x00ff0000) >> 16;
                block[salt_len + 2] = (block_count & 0x0000ff00) >>  8;
                block[salt_len + 3] = (block_count & 0x000000ff) >>  0;

        block[256] is outside the buffer and then the next lines would overwrite 3 more bytes