Fix use of uninitialized value in message decoding. (!26) · Merge requests · matrix-org / Olm

Denis Kasak requested to merge fix-decoding-use-of-uninit-value into master May 11, 2021

_olm_decode_group_message should initialize all fields of the results struct before returning. This is because its caller _decrypt_max_plaintext_length relies on it having initialized these fields.

Luckily, this only allows one to subvert the version check in _decrypt_max_plaintext_length, but not the following check that the ciphertext field is non-null because that field is initialized.

Edited May 11, 2021 by Denis Kasak

Fix use of uninitialized value in message decoding.

Merge request reports