New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[3.10] gh-98517: Fix buffer overflows in _sha3 module #98519

Merged

gpshead merged 3 commits into python:3.10 from botovq:fix-issue-98517

Oct 21, 2022

Commits on Oct 21, 2022

pythongh-98517 : Fix buffer overflows in _sha3 module
```
This is a port of the applicable part of XKCP's fix [1] for
CVE-2022-37454 and avoids the segmentation fault and the infinite
loop in the test cases published in [2].

[1]: XKCP/XKCP@fdc6fef
[2]: https://mouha.be/sha-3-buffer-overflow/
```
botovq committed Oct 21, 2022
Configuration menu
View commit details

Copy full SHA for ae4389c

Browse repository at this point
Copy the full SHA

ae4389c View commit details

Browse the repository at this point in the history
📜🤖 Added by blurb_it.

blurb-it[bot] authored Oct 21, 2022
Configuration menu
View commit details

Copy full SHA for 3fad5d7

Browse repository at this point
Copy the full SHA

3fad5d7 View commit details

Browse the repository at this point in the history
Add a regression test.

gpshead committed Oct 21, 2022
Configuration menu
View commit details

Copy full SHA for ea9a913

Browse repository at this point
Copy the full SHA

ea9a913 View commit details

Browse the repository at this point in the history