-
Notifications
You must be signed in to change notification settings - Fork 339
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix potential panic due to slice out of index issue, it may happen if… #403
Conversation
… snmpv3 priv password not match, return value of parseLength may be negtive Signed-off-by: roli <robin_li@126.com> Signed-off-by: Robin(YuanBing) Li <robin_li@126.com>
But, maybe we should fix the output of that function to be a |
change the output of that function parseLength() to be uint will ideal - I am just trying to avoid break other functions since it is widely used. the issue itself is real and can be reliably replicated. |
I don't see how parseLength can return a negative value. |
Maybe the real issue is the cursor is negative? |
This came up while fuzzing in PR #443 and a fix for it was add there.
Reproducer (
|
Fixed in #443. |
… snmpv3 priv password not match, return value of parseLength may be negtive