root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
openssl/apps
History
Eugene Syromiatnikov f7f2874c8a apps/storeutl.c: avoid signed integer overflow in indent_printf() 
As two arbitrarily large printf return value can trigger function
overflow, rewrite the return value handling to avoid it.

Fixes: fb43ddceda "Add a recursive option to 'openssl storeutl'"
Resolves: https://scan5.scan.coverity.com/#/project-view/65248/10222?selectedIssue=1665428
References: https://github.com/openssl/project/issues/1432
Signed-off-by: Eugene Syromiatnikov <esyr@openssl.org>

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28546)
 		2025-09-16 09:41:38 -04:00
..
demoSRP
include dgst and mac apps: Added new ways for obtaining a MAC key 2025-09-09 09:58:10 +02:00
lib dgst and mac apps: Added new ways for obtaining a MAC key 2025-09-09 09:58:10 +02:00
CA.pl.in Copyright year updates 2025-09-02 13:05:45 +00:00
asn1parse.c apps/asn1parse.c: correct help text order for -genstr option 2025-07-31 20:37:18 +02:00
build.info
ca-cert.srl
ca-key.pem
ca-req.pem
ca.c apps: use app_malloc_array() 2025-09-07 07:22:24 -04:00
cert.pem
ciphers.c
client.pem
cmp.c
cms.c Implement KEMRecipientInfo (RFC9629) in CMS 2025-07-30 11:39:04 +02:00
configutl.c
crl.c Copyright year updates 2025-09-02 13:05:45 +00:00
crl2pkcs7.c
ct_log_list.cnf
dgst.c dgst and mac apps: Added new ways for obtaining a MAC key 2025-09-09 09:58:10 +02:00
dhparam.c
dsa-ca.pem
dsa-pca.pem
dsa.c
dsa512.pem
dsa1024.pem
dsap.pem
dsaparam.c
ec.c Copyright year updates 2025-09-02 13:05:45 +00:00
ecparam.c apps: use app_malloc_array() 2025-09-07 07:22:24 -04:00
enc.c apps/enc.c: avoid signed integer overflow on bufsize assignment 2025-09-03 07:47:33 -04:00
engine.c
errstr.c
fipsinstall.c Copyright year updates 2025-09-02 13:05:45 +00:00
gendsa.c
genpkey.c
genrsa.c
info.c
insta.ca.crt
kdf.c Copyright year updates 2025-09-02 13:05:45 +00:00
list.c
mac.c dgst and mac apps: Added new ways for obtaining a MAC key 2025-09-09 09:58:10 +02:00
nseq.c
ocsp.c apps/ocsp.c: avoid using NULL resp 2025-09-03 07:47:34 -04:00
openssl-vms.cnf
openssl.c Copyright year updates 2025-09-02 13:05:45 +00:00
openssl.cnf
passwd.c Copyright year updates 2025-09-02 13:05:45 +00:00
pca-cert.srl
pca-key.pem
pca-req.pem
pkcs7.c
pkcs8.c Copyright year updates 2025-09-02 13:05:45 +00:00
pkcs12.c
pkey.c Copyright year updates 2025-09-02 13:05:45 +00:00
pkeyparam.c
pkeyutl.c
prime.c
privkey.pem
progs.pl Copyright year updates 2025-09-02 13:05:45 +00:00
rand.c Copyright year updates 2025-09-02 13:05:45 +00:00
rehash.c
req.c Copyright year updates 2025-09-02 13:05:45 +00:00
req.pem
rsa.c
rsa8192.pem
rsautl.c apps: use app_malloc_array() 2025-09-07 07:22:24 -04:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_client.c Eliminate indentation tabs from *.c and *.h files 2025-08-06 08:17:05 +10:00
s_server.c Fix NULL check in get_ocsp_resp_from_responder 2025-07-29 13:40:57 -04:00
s_time.c Copyright year updates 2025-09-02 13:05:45 +00:00
server.pem
server.srl
server2.pem
sess_id.c Copyright year updates 2025-09-02 13:05:45 +00:00
skeyutl.c
smime.c
speed.c apps: use app_malloc_array() 2025-09-07 07:22:24 -04:00
spkac.c
srp.c apps: use app_malloc_array() 2025-09-07 07:22:24 -04:00
storeutl.c apps/storeutl.c: avoid signed integer overflow in indent_printf() 2025-09-16 09:41:38 -04:00
testCA.pem
testdsa.h
testrsa.h
timeouts.h
ts.c
tsget.in
verify.c
version.c
vms_decc_init.c
x509.c apps, fuzz, providers: use array memory (re)allocation routines 2025-08-08 12:22:10 -04:00