Displaying 1 result from an estimated 1 matches for "kex_free_newkeys".
2023 Jun 06
1
Possible overflow bug?
While doing some related work I built openssh 9.3p1 with
-fsanitize=address and this came up during compilation.
In file included from /usr/include/string.h:535,
from kex.c:34:
In function 'explicit_bzero',
inlined from 'kex_free_newkeys' at kex.c:743:2:
/usr/include/bits/string_fortified.h:72:3: warning:
'__explicit_bzero_chk' writing 48 bytes into a region of size 8
overflows the destination [-Wstringop-overflow=]
72 | __explicit_bzero_chk (__dest, __len, __glibc_objsize0 (__dest));
| ^~~~~~~~~~~~~~~~...