out of bounds read in tls13_ExtensionAllowed

RESOLVED DUPLICATE of bug 1247698

Status

RESOLVED DUPLICATE of bug 1247698
3 years ago
3 years ago

People

(Reporter: keeler, Unassigned)

Tracking

trunk

Firefox Tracking Flags

(firefox47 affected)

Details

(Whiteboard: CID 1352110)

If tls13_ExtensionAllowed is passed an extension it doesn't know about, it will read one entry past the end of the KnownExtensions array. It's not clear if all code paths that call tls13_ExtensionAllowed prevent unknown extension types from being passed in, but it would probably be best to be defensive here.
Nevermind, Tim's on it.
Group: crypto-core-security
Status: NEW → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 1247698
You need to log in before you can comment on or make changes to this bug.