Closed
Bug 1920470
Opened 17 days ago
Closed 13 days ago
nssfuzz-tls-client: Assertion `input->len == outputLen' failed
Categories
(NSS :: Test, defect)
NSS
Test
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: mdauer, Assigned: mdauer)
Details
Attachments
(1 file)
OSS-Fuzz: https://oss-fuzz.com/testcase-detail/4722752127303680
The assertion at https://searchfox.org/nss/rev/7705b3868dbf14cdfc3315791d01709e1041a5cd/fuzz/tls_common.cc#78 is wrong as outputLen
may also be greater than input->len
. Additionally, the decoding function is responsible for checking that outputLen is sufficiently large.
Assignee | ||
Comment 1•17 days ago
|
||
Comment 2•13 days ago
|
||
Status: ASSIGNED → RESOLVED
Closed: 13 days ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•