Fix CVE-2014-3508, pretty printing and OID validation: - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	guenther <>	2014-08-08 04:53:43 +0000
committer	guenther <>	2014-08-08 04:53:43 +0000
commit	c6985e683db078656f9f4ec499be1ef35bdce285 (patch)
tree	3d49e2ab368dd2c4623345f392a9a87627e2d9ff /src/lib/libc/stdlib
parent	32554492a8d665d7c0517b374f2ea31089caa176 (diff)
download	openbsd-c6985e683db078656f9f4ec499be1ef35bdce285.tar.gz openbsd-c6985e683db078656f9f4ec499be1ef35bdce285.tar.bz2 openbsd-c6985e683db078656f9f4ec499be1ef35bdce285.zip

Fix CVE-2014-3508, pretty printing and OID validation:

- make sure the output buffer is always NUL terminated if buf_len was initially greater than zero. - reject OIDs that are too long, too short, or not in proper base-127 Based on https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87 ok bcook@

Diffstat (limited to 'src/lib/libc/stdlib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: