[PATCH 0/1] MR8374: crypt32: Fix missing size check in CSignedEncodeMsg_Open. - Wine-gitlab - list.winehq.org

newer
[PATCH 0/3] MR8375: widl: Add rows...

[PATCH 0/1] MR8374: crypt32: Fix missing size check in CSignedEncodeMsg_Open.

older
[PATCH 0/1] MR8373: mfmediaengine:...

Yuxuan Shui (＠yshui)

19 Jun 2025 19 Jun '25

12:42 p.m.

Don't access CMS fields before checking cbSize. -- https://gitlab.winehq.org/wine/wine/-/merge_requests/8374

Reply

Sign in to reply online Use email software

Show replies by date

Yuxuan Shui

19 Jun 19 Jun

12:42 p.m.

New subject: [PATCH 1/1] crypt32: Fix missing size check in CSignedEncodeMsg_Open.

From: Yuxuan Shui <yshui(a)codeweavers.com> Don't access CMS fields before checking cbSize. --- dlls/crypt32/msg.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/dlls/crypt32/msg.c b/dlls/crypt32/msg.c index 4d49aebe4b6..0f76dcc5ac1 100644 --- a/dlls/crypt32/msg.c +++ b/dlls/crypt32/msg.c @@ -1470,8 +1470,8 @@ static HCRYPTMSG CSignedEncodeMsg_Open(DWORD dwFlags, ret = FALSE; for (i = 0; ret && i < msg->msg_data.info->cSignerInfo; i++) { - if (info->rgSigners[i].SignerId.dwIdChoice == - CERT_ID_KEY_IDENTIFIER) + if (info->rgSigners[i].cbSize == sizeof(CMSG_SIGNER_ENCODE_INFO_WITH_CMS) && + info->rgSigners[i].SignerId.dwIdChoice == CERT_ID_KEY_IDENTIFIER) msg->msg_data.info->version = CMSG_SIGNED_DATA_V3; ret = CSignerInfo_Construct( &msg->msg_data.info->rgSignerInfo[i], -- GitLab https://gitlab.winehq.org/wine/wine/-/merge_requests/8374

Reply

Sign in to reply online Use email software

260

Age (days ago)

260

Last active (days ago)

Download

1 comments

2 participants

tags

participants (2)

Yuxuan Shui
Yuxuan Shui (＠yshui)