[Wireshark-bugs] [Bug 16465] Signed Overflow in ber_open

bugzilla-daemon Wed, 29 Jul 2020 08:06:31 -0700

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16465


David Perry <boolean...@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |boolean...@gmail.com

--- Comment #1 from David Perry <boolean...@gmail.com> ---
In `ber_open()` the `len` variable is declared to be an int. If it were to be
changed to an unsigned int, the given test case of (16715263<<8)+255 would
result in 4279107583, which is not an overflow of a 32-bit value (though it is
somewhat close, so maybe a guint64 would be safer).

-- 
You are receiving this mail because:
You are watching all bug changes.

___________________________________________________________________________
Sent via:    Wireshark-bugs mailing list <wireshark-bugs@wireshark.org>
Archives:    https://www.wireshark.org/lists/wireshark-bugs
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-bugs
             mailto:wireshark-bugs-requ...@wireshark.org?subject=unsubscribe

[Wireshark-bugs] [Bug 16465] Signed Overflow in ber_open

Reply via email to