Vinícius Ferrão cb2a6b3f3c fix: reject IPMI packets with invalid CBC padding instead of crashing ...

cbc_pad in decrypt mode reads the last byte as the pad count, then
calls splice(@block, 0 - $count). If decrypted data is corrupt, the
pad count can exceed the array size, crashing with "Modification of
non-creatable array value attempted, subscript -16".

Return empty string on invalid padding so the caller treats it as a
decryption failure rather than accepting corrupted data as a valid
IPMI response.

Ref: #7511

2026-05-06 01:23:10 -03:00

..

perl/xCAT

fix: reject IPMI packets with invalid CBC padding instead of crashing

2026-05-06 01:23:10 -03:00

xcat

fix: restore legacy SLES provisioning paths

2026-05-05 17:09:37 -03:00