Merge pull request #145 from libtom/fix/coverity-cbc_decrypt-out-of-bounds-read

fix coverity finding: cbc_decrypt out-of-bound read
2017-02-25 20:44:47 +01:00 · 2017-02-25 20:44:47 +01:00 · d777f9d1dc
commit d777f9d1dc
parent 7c2cc079ec 7246ab50da
1 changed files with 1 additions and 1 deletions
--- a/src/modes/cbc/cbc_decrypt.c
+++ b/src/modes/cbc/cbc_decrypt.c
@ -45,7 +45,7 @@ int cbc_decrypt(const unsigned char *ct, unsigned char *pt, unsigned long len, s
   }

   /* is blocklen valid? */
-   if (cbc->blocklen < 1 || cbc->blocklen > (int)sizeof(cbc->IV)) {
+   if (cbc->blocklen < 1 || cbc->blocklen > (int)sizeof(cbc->IV) || cbc->blocklen > (int)sizeof(tmp)) {
      return CRYPT_INVALID_ARG;
   }