philsmd
|
02480f906a
|
prevent buffer overflow in case of OPTS_TYPE_ST_ADD80 and/or OPTS_TYPE_ST_ADD01
|
2017-02-15 11:33:52 +01:00 |
|
Jens Steube
|
8717672d00
|
Merge pull request #1099 from philsmd/master
fixed maximum salt_len for pbkdf2 buffers
|
2017-02-15 10:33:09 +01:00 |
|
philsmd
|
0993f2e748
|
fixed maximum salt_len for pbkdf2 buffers
|
2017-02-14 22:05:47 +01:00 |
|
Jens Steube
|
577303677c
|
Merge pull request #1098 from philsmd/master
minor: do not use UINT_MAX as upper bound for the salt_len
|
2017-02-14 21:57:53 +01:00 |
|
philsmd
|
54915e4d7b
|
minor: do not use UINT_MAX as upper bound for the salt_len
|
2017-02-14 21:54:49 +01:00 |
|
Jens Steube
|
4b85144cc2
|
Merge pull request #1097 from philsmd/master
max esalt_buf for sip fixed: we also need to append 0x80
|
2017-02-14 21:48:12 +01:00 |
|
philsmd
|
f351461ecd
|
max esalt_buf for sip fixed: we also need to append 0x80
|
2017-02-14 21:45:18 +01:00 |
|
jsteube
|
be3ce44f75
|
Fix CID 1402444 (#1 of 1): Out-of-bounds read
|
2017-02-14 21:40:11 +01:00 |
|
Jens Steube
|
4012dc5bdb
|
Merge pull request #1096 from philsmd/master
minor: use 2 distinct return value to avoid dead code detections
|
2017-02-14 21:28:46 +01:00 |
|
philsmd
|
056d1f3da4
|
minor: use 2 distinct return value to avoid dead code detections
|
2017-02-14 21:24:45 +01:00 |
|
jsteube
|
f61788eac1
|
Merge branch 'master' of https://github.com/hashcat/hashcat
|
2017-02-14 21:22:04 +01:00 |
|
jsteube
|
0642639b81
|
CID 1402417 (#1 of 1): Division or modulo by float zero
|
2017-02-14 21:21:24 +01:00 |
|
Jens Steube
|
7b9e06c438
|
Merge pull request #1095 from philsmd/master
dead code: hash_len is always > 0 at this location
|
2017-02-14 21:12:59 +01:00 |
|
philsmd
|
1f88ae42ef
|
dead code: hash_len is always > 0 at this location
|
2017-02-14 21:09:04 +01:00 |
|
jsteube
|
ed772a02a4
|
Check for at least one active OpenCL device before running weak-hash-check
|
2017-02-14 21:05:44 +01:00 |
|
Jens Steube
|
8fe0765084
|
Merge pull request #1094 from philsmd/master
dead code: here we do not need to check for NULL
|
2017-02-14 21:03:30 +01:00 |
|
philsmd
|
9ed93fcce9
|
dead code: here we do not need to check for NULL
|
2017-02-14 21:01:52 +01:00 |
|
jsteube
|
6bcfca26b3
|
Fix CID 1402873: Dereference before null check
|
2017-02-14 20:53:42 +01:00 |
|
Jens Steube
|
1afc47829f
|
Merge pull request #1093 from philsmd/master
always check the input for NULL before the strtok_r () calls
|
2017-02-14 20:47:55 +01:00 |
|
philsmd
|
f535eb2bd0
|
always check the input for NULL before the strtok_r () calls
|
2017-02-14 20:46:03 +01:00 |
|
Jens Steube
|
f9bbd42b4a
|
Merge pull request #1092 from philsmd/master
fix our usage of strtok_r (), it was not 100% correct
|
2017-02-14 20:12:18 +01:00 |
|
philsmd
|
12047861c5
|
also double-check input/output of strtok_r ()
|
2017-02-14 20:07:49 +01:00 |
|
jsteube
|
4b3d39623c
|
Restore: Add some checks on the rd->cwd variable in restore case
|
2017-02-14 20:05:44 +01:00 |
|
jsteube
|
b2dbd22979
|
Moved datatype from double to u32 in autotune.c as this makes no difference
|
2017-02-14 19:51:49 +01:00 |
|
philsmd
|
a82f6fb77c
|
our usage of strtok_r () was not totally correct (but almost)
|
2017-02-14 19:48:07 +01:00 |
|
Jens Steube
|
afa3326330
|
Merge pull request #1091 from philsmd/master
minor: within parse_and_store_salt () do the initialization of the buffer @ start
|
2017-02-14 19:33:27 +01:00 |
|
philsmd
|
e5ecbb9a59
|
minor: within parse_and_store_salt () do the initialization of the buffer at the very start
|
2017-02-14 19:30:36 +01:00 |
|
Jens Steube
|
33da74f6db
|
Merge pull request #1090 from philsmd/pr/hwmon_step_fix
minor: the step value should never be zero
|
2017-02-14 19:25:46 +01:00 |
|
Jens Steube
|
00638e0cf4
|
Merge pull request #1089 from philsmd/master
minor: useless code (since we removed the swaps)
|
2017-02-14 19:25:24 +01:00 |
|
philsmd
|
5ea1bd2a99
|
minor: the step value should never be zero
|
2017-02-14 19:22:51 +01:00 |
|
philsmd
|
05f8abdbe7
|
minor: useless code (since we removed the swaps)
|
2017-02-14 19:17:45 +01:00 |
|
Jens Steube
|
a969cb0768
|
Merge pull request #1088 from philsmd/master
minor: check return value of hc_stat () and use fclose () in case of error
|
2017-02-14 19:16:50 +01:00 |
|
philsmd
|
f87c65d081
|
minor: check return value of hc_stat () and use fclose () in case of error
|
2017-02-14 19:12:24 +01:00 |
|
Jens Steube
|
670ac4aa6e
|
Merge pull request #1087 from philsmd/master
minor: check for return value of sscanf () within the zip2 parse function
|
2017-02-14 19:08:33 +01:00 |
|
philsmd
|
7818712090
|
minor: check for return value of sscanf () within the zip2 parse function
|
2017-02-14 18:58:25 +01:00 |
|
Jens Steube
|
255bb8db74
|
Merge pull request #1086 from philsmd/master
dead code: in office parse functions
|
2017-02-14 18:55:30 +01:00 |
|
philsmd
|
9efc429928
|
dead code: in office parse functions
|
2017-02-14 18:49:35 +01:00 |
|
Jens Steube
|
c7c0101f64
|
Merge pull request #1085 from philsmd/master
dead code: both hashes_avail and hash_len can't be 0 here
|
2017-02-14 18:38:59 +01:00 |
|
philsmd
|
94a37157c1
|
dead code: both hashes_avail and hash_len can't be 0 here
|
2017-02-14 18:33:53 +01:00 |
|
Jens Steube
|
db46f95e14
|
Merge pull request #1084 from philsmd/master
dead code: already implied length within the android fde parsing function
|
2017-02-14 18:27:43 +01:00 |
|
Jens Steube
|
1bbbbdad5f
|
Merge pull request #1083 from philsmd/master
dead code: already implied length within the android fde parsing function
|
2017-02-14 18:25:28 +01:00 |
|
philsmd
|
4eadbf221e
|
dead code: already implied length within the android fde parsing function
|
2017-02-14 18:25:20 +01:00 |
|
philsmd
|
8fa361dffa
|
dead code: already implied length within the android fde parsing function
|
2017-02-14 18:22:46 +01:00 |
|
jsteube
|
d069c980d0
|
Testfix for CID 1402439 (#1 of 1): Out-of-bounds read
|
2017-02-14 18:07:33 +01:00 |
|
jsteube
|
958ca90132
|
Test failed to workaround coverity false-positive
|
2017-02-14 17:59:23 +01:00 |
|
Jens Steube
|
b682091155
|
Merge pull request #1082 from philsmd/master
we always need to check for NULL after strchr ()
|
2017-02-14 17:55:37 +01:00 |
|
jsteube
|
231592101e
|
Test commit to workaround coverity false-positive
|
2017-02-14 17:54:36 +01:00 |
|
philsmd
|
d366a93bb3
|
we always need to check for NULL after strchr ()
|
2017-02-14 17:54:18 +01:00 |
|
Jens Steube
|
37c1cbbf5b
|
Merge pull request #1081 from philsmd/master
-m 13100 = Kerberos 5 TGS-REP: parser failed to correctly verify the hash
|
2017-02-14 17:50:02 +01:00 |
|
philsmd
|
49ba6cb05d
|
-m 13100 = Kerberos 5 TGS-REP: parser failed to correctly verify the hash
|
2017-02-14 17:45:05 +01:00 |
|