- changed status to resolved
add range checks on byte length to bit length calculation
Issue #98
closed
check that the input byte length is non negative and won't result in an integer overflow
Comments (3)
-
reporter -
reporter - changed status to closed
in v0.5.7
-
reporter borrowed test case from Quan Nguyen via https://bitbucket.org/connect2id/nimbus-jose-jwt/issues/224/byte-to-bit-overflow-in-cbc
- Log in to comment
fix
#98with a range checks (non negative and won't result in an integer overflow) on byte length to bit length calculation→ <<cset b79e67c13c23>>