From c7f1a37d9b0f17292649bfed8bf6cef83cf4221f Mon Sep 17 00:00:00 2001 From: Kim De Mey Date: Fri, 19 Aug 2022 17:22:43 +0200 Subject: [PATCH] Merge pull request from GHSA-q3x5-92cp-3pjr --- secp256k1.nim | 3 +++ 1 file changed, 3 insertions(+) diff --git a/secp256k1.nim b/secp256k1.nim index 5e2a2ca..4b85259 100644 --- a/secp256k1.nim +++ b/secp256k1.nim @@ -372,6 +372,9 @@ func fromRaw*(T: type SkRecoverableSignature, data: openArray[byte]): SkResult[T static(&"secp: recoverable signature must be {SkRawRecoverableSignatureSize} bytes")) let recid = cint(data[64]) + if recid < 0 or recid > 3: + return err("secp: recoverable signature's recid must be >= 0 and <= 3") + var sig {.noinit.}: secp256k1_ecdsa_recoverable_signature if secp256k1_ecdsa_recoverable_signature_parse_compact( secp256k1_context_no_precomp, addr sig, data.ptr0, recid) != 1: