[Bug 2046462] [NEW] mkimage "hardening" patch is broken
Rasmus Villemoes
2046462 at bugs.launchpad.net
Thu Dec 14 15:35:51 UTC 2023
Public bug reported:
The ubuntu-hardening-limit-keynames-to-keydir.patch breaks 'mkimage -G'.
Since that option was introduced upstream (commits 36bfcb62b3e and
824ee745fb, v2021.07), the "name" argument in rsa_pem_get_priv_key() may
be NULL, but said patch unconditionally passes it to strchr().
** Affects: u-boot (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to u-boot in Ubuntu.
https://bugs.launchpad.net/bugs/2046462
Title:
mkimage "hardening" patch is broken
Status in u-boot package in Ubuntu:
New
Bug description:
The ubuntu-hardening-limit-keynames-to-keydir.patch breaks 'mkimage
-G'. Since that option was introduced upstream (commits 36bfcb62b3e
and 824ee745fb, v2021.07), the "name" argument in
rsa_pem_get_priv_key() may be NULL, but said patch unconditionally
passes it to strchr().
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/u-boot/+bug/2046462/+subscriptions
More information about the foundations-bugs
mailing list