Avoid an overread caused by d2i_PrivateKey().

There are cases where the old_priv_decode() function can fail but consume
bytes. This will result in the pp pointer being advanced, which causes
d2i_PKCS8_PRIV_KEY_INFO() to be called with an advanced pointer and
incorrect length.

Fixes oss-fuzz #13803 and #14142.

ok deraadt@ tb@

0 files changed, 0 insertions, 0 deletions