Closed Bug 1920470 Opened 17 days ago Closed 13 days ago

nssfuzz-tls-client: Assertion `input->len == outputLen' failed

Categories

(NSS :: Test, defect)

defect

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: mdauer, Assigned: mdauer)

Details

Attachments

(1 file)

OSS-Fuzz: https://oss-fuzz.com/testcase-detail/4722752127303680

The assertion at https://searchfox.org/nss/rev/7705b3868dbf14cdfc3315791d01709e1041a5cd/fuzz/tls_common.cc#78 is wrong as outputLen may also be greater than input->len. Additionally, the decoding function is responsible for checking that outputLen is sufficiently large.

Status: ASSIGNED → RESOLVED
Closed: 13 days ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: