Windows vulnerability fix: correct possible BSOD attack targeted towards GetWipePassCount() / WipeBuffer() found by the Open Crypto Audit Project.

author: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2014-08-31 23:56:37 +0200
committer: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2014-11-08 23:23:05 +0100
commit: 4fa4d6d22708231a51bdff93ef3220aa95b6fc80 (patch)
tree: e4ad7b2f67f98699c4964f1152120e49329ffb0d /src/Common/BootEncryption.cpp
parent: e0efb36f337be3e57e528addd714e10745da6d1f (diff)
download: VeraCrypt-4fa4d6d22708231a51bdff93ef3220aa95b6fc80.tar.gz
VeraCrypt-4fa4d6d22708231a51bdff93ef3220aa95b6fc80.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/Common/BootEncryption.cpp b/src/Common/BootEncryption.cpp
index e57a434e..9f848fc7 100644
--- a/src/Common/BootEncryption.cpp
+++ b/src/Common/BootEncryption.cpp
@@ -2064,7 +2064,7 @@ namespace VeraCrypt
 	{
 		BootEncryptionStatus encStatus = GetStatus();
 
-		if (encStatus.SetupInProgress)
+		if (encStatus.SetupInProgress || (wipePassCount <= 0))
 			throw ParameterIncorrect (SRC_POS);
 
 		SystemDriveConfiguration config = GetSystemDriveConfiguration ();
author	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2014-08-31 23:56:37 +0200
committer	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2014-11-08 23:23:05 +0100
commit	4fa4d6d22708231a51bdff93ef3220aa95b6fc80 (patch)
tree	e4ad7b2f67f98699c4964f1152120e49329ffb0d /src/Common/BootEncryption.cpp
parent	e0efb36f337be3e57e528addd714e10745da6d1f (diff)
download	VeraCrypt-4fa4d6d22708231a51bdff93ef3220aa95b6fc80.tar.gz VeraCrypt-4fa4d6d22708231a51bdff93ef3220aa95b6fc80.zip