From gniibe at fsij.org  Wed Jun  3 07:47:00 2026
From: gniibe at fsij.org (NIIBE Yutaka)
Date: Wed,  3 Jun 2026 14:47:00 +0900
Subject: [PATCH] sexp: Add length check DATALEN when parsing SEXP.
Message-ID: <30365d270bc6aa7dc8a03c8693c7fa086defcc2c.1780465526.git.gniibe@fsij.org>


* src/sexp.c (do_vsexp_sscan): Raise an error when the length
cannot be represented by the DATALEN type.

--

Reported-by: Ciwan ?ztopal
GnuPG-bug-id: 8267
Signed-off-by: NIIBE Yutaka <gniibe at fsij.org>
---
 src/sexp.c | 58 ++++++++++++++++++++++++++++++++++++++++++++++++++++--
 1 file changed, 56 insertions(+), 2 deletions(-)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-sexp-Add-length-check-DATALEN-when-parsing-SEXP.patch
Type: text/x-patch
Size: 4110 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gcrypt-devel/attachments/20260603/a9e79afd/attachment.bin>

From gniibe at fsij.org  Thu Jun  4 07:46:45 2026
From: gniibe at fsij.org (NIIBE Yutaka)
Date: Thu,  4 Jun 2026 14:46:45 +0900
Subject: [PATCH] cipher:kem: Validate input length.
Message-ID: <db5ae94eb01feb3cb60d42e6caa75106e3e781fc.1780551989.git.gniibe@fsij.org>


* cipher/kem.c (_gcry_kem_genkey): Add input length validation.
(_gcry_kem_encap, _gcry_kem_decap): Likewise.
* src/gcrypt.h.in: Add forgotten constants for X448.

--

Reported-by: Ciwan ?ztopal
GnuPG-bug-id: 8259
Signed-off-by: NIIBE Yutaka <gniibe at fsij.org>
---
 cipher/kem.c    | 124 ++++++++++++++++++++++++++++++++++++++++--------
 src/gcrypt.h.in |  13 +++++
 2 files changed, 118 insertions(+), 19 deletions(-)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-cipher-kem-Validate-input-length.patch
Type: text/x-patch
Size: 9721 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gcrypt-devel/attachments/20260604/12a55d2c/attachment-0001.bin>