Describe the bug
In pgp/yubikey.go lines 428-440, parseASN1Signature() doesn't validate slice bounds before accessing:
rLen := int(der[pos])
pos++
rVal := new(big.Int).SetBytes(der[pos : pos+rLen]) // No bounds check
pos += rLen
If pos + rLen exceeds len(der), panic occurs (index out of range). Initial check only validates len(der) < 6, but not actual slice access.
To reproduce
- Send malformed ECDSA signature with large
rLen value
- Parser attempts slice access beyond array bounds
- Application panics with index out of range
Expected behavior
Add bounds validation before slice access:
rLen := int(der[pos])
pos++
if pos+rLen > len(der) {
return nil, nil, fmt.Errorf("ASN.1 signature truncated: r length overflow")
}
rVal := new(big.Int).SetBytes(der[pos : pos+rLen])
pos += rLenScreenshots
N/A
Additional context
- File:
pgp/yubikey.go
- Lines: 428-440
- Severity: High - crash on malformed signatures, potential DoS
- Fix complexity: Easy - add bounds check before slice operations
Describe the bug
In
pgp/yubikey.golines 428-440,parseASN1Signature()doesn't validate slice bounds before accessing:If
pos + rLenexceedslen(der), panic occurs (index out of range). Initial check only validateslen(der) < 6, but not actual slice access.To reproduce
rLenvalueExpected behavior
Add bounds validation before slice access:
Screenshots
N/A
Additional context
pgp/yubikey.go