search for: suhov

Displaying 5 results from an estimated 5 matches for "suhov".

Did you mean: sudo
[Bug 3732] New: An integer underflow may occur due to arithmetic operation (unsigned subtraction) between values '0' and '67108864', where the first value comes from the expression 'h4 + b' and the second value comes from the expression '(1 << 26)'
2024 Sep 11
2
[Bug 3732] New: An integer underflow may occur due to arithmetic operation (unsigned subtraction) between values '0' and '67108864', where the first value comes from the expression 'h4 + b' and the second value comes from the expression '(1 << 26)'
...#39; Product: Portable OpenSSH Version: 9.8p1 Hardware: Other OS: Linux Status: NEW Severity: security Priority: P5 Component: Build system Assignee: unassigned-bugs at mindrot.org Reporter: suhov.ra at npc-ksb.ru File: https://github.com/openssh/openssh-portable/blob/master/poly1305.c Line: 140 The expression g4 = h4 + b - (1 << 26); may cause an overflow if the value of h4 + b is less than 67108864, which is equivalent to 1 << 26. Overflow when working with unsigned numbers w...
[Bug 3730] New: Integer overflow when adding 6000 and display_number
2024 Sep 11
2
[Bug 3730] New: Integer overflow when adding 6000 and display_number
...ay_number Product: Portable OpenSSH Version: 9.8p1 Hardware: Other OS: All Status: NEW Severity: minor Priority: P5 Component: Build system Assignee: unassigned-bugs at mindrot.org Reporter: suhov.ra at npc-ksb.ru File: https://github.com/openssh/openssh-portable/blob/master/channels.c Line: 5239 There is virtually no chance of integer overflow when adding 6000 to display_number. The display_number variable is read from a string containing the value of the DISPLAY environment variable, whi...
[Bug 3731] New: Integer overflow when adding 6000 and display_number
2024 Sep 11
1
[Bug 3731] New: Integer overflow when adding 6000 and display_number
...ay_number Product: Portable OpenSSH Version: 9.8p1 Hardware: Other OS: All Status: NEW Severity: minor Priority: P5 Component: Build system Assignee: unassigned-bugs at mindrot.org Reporter: suhov.ra at npc-ksb.ru File: https://github.com/openssh/openssh-portable/blob/master/channels.c Line: 5239 There is virtually no chance of integer overflow when adding 6000 to display_number. The display_number variable is read from a string containing the value of the DISPLAY environment variable, whi...
[Bug 3734] New: Expression 'l > SIZE_MAX' is always false
2024 Sep 11
1
[Bug 3734] New: Expression 'l > SIZE_MAX' is always false
...lse Product: Portable OpenSSH Version: 9.8p1 Hardware: Other OS: All Status: NEW Severity: enhancement Priority: P5 Component: Build system Assignee: unassigned-bugs at mindrot.org Reporter: suhov.ra at npc-ksb.ru File: https://github.com/openssh/openssh-portable/blob/master/sshbuf-misc.c Line: 221 Expression 'l > SIZE_MAX' is always false , which may be caused by a logical error: 'l' has a type 'size_t' with minimum value '0' and a maximum value '184...
[Bug 3735] New: The ngroups variable may be set to a negative value when calling sysconf(_SC_NGROUPS_MAX)
2024 Sep 11
2
[Bug 3735] New: The ngroups variable may be set to a negative value when calling sysconf(_SC_NGROUPS_MAX)
...UPS_MAX) Product: Portable OpenSSH Version: 9.8p1 Hardware: Other OS: All Status: NEW Severity: normal Priority: P5 Component: Build system Assignee: unassigned-bugs at mindrot.org Reporter: suhov.ra at npc-ksb.ru File: https://github.com/openssh/openssh-portable/blob/master/groupaccess.c Line: 64 The ngroups variable can be set to a negative value when calling sysconf(_SC_NGROUPS_MAX), and this value is then used without checking in the xcalloc function call, which can lead to unpredicta...