vyos-strongswan.git/src, branch 1.3.5

cert-cache: Prevent crash due to integer overflow/sign change

2021-11-24T15:17:39+00:00

random() allocates values in the range [0, RAND_MAX], with RAND_MAX usually equaling INT_MAX = 2^31-1. Previously, values between 0 and 31 were added directly to that offset before applying`% CACHE_SIZE` to get an index into the cache array. If the random value was very high, this resulted in an integer overflow and a negative index value and, therefore, an out-of-bounds access of the array and in turn dereferencing invalid pointers when trying to acquire the read lock. This most likely results in a segmentation fault. Fixes: 764e8b2211ce ("reimplemented certificate cache") Fixes: CVE-2021-41991 Signed-off-by: Daniil Baturin

Reject RSASSA-PSS params with negative salt length

2021-11-24T01:06:33+00:00

The `salt_len` member in the struct is of type `ssize_t` because we use negative values for special automatic salt lengths when generating signatures. Not checking this could lead to an integer overflow. The value is assigned to the `len` field of a chunk (`size_t`), which is further used in calculations to check the padding structure and (if that is passed by a matching crafted signature value) eventually a memcpy() that will result in a segmentation fault. Fixes: a22316520b91 ("signature-params: Add functions to parse/build ASN.1 RSASSA-PSS params") Fixes: 7d6b81648b2d ("gmp: Add support for RSASSA-PSS signature verification") Fixes: CVE-2021-41990 Signed-off-by: Daniil Baturin

New upstream version 5.7.2

2019-01-02T10:07:05+00:00

New upstream version 5.7.1

2018-10-01T20:30:25+00:00

New upstream version 5.7.0

2018-09-24T13:11:14+00:00

New upstream version 5.6.3

2018-06-04T07:59:21+00:00

New upstream version 5.6.2

2018-02-19T17:17:21+00:00

New upstream version 5.6.1

2017-11-21T09:22:31+00:00

New upstream version 5.6.0

2017-09-01T15:21:25+00:00

New upstream version 5.5.3

2017-05-30T18:59:31+00:00