Fix CVE-2014-3508, pretty printing and OID validation: - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	guenther <>	2014-08-08 04:53:43 +0000
committer	guenther <>	2014-08-08 04:53:43 +0000
commit	39cb4488ec5412e0f592f7fabdb5ab22cded5edc (patch)
tree	3d49e2ab368dd2c4623345f392a9a87627e2d9ff /src/lib/libssl/d1_both.c
parent	799e1b07f7a6a3c12b4d9bcb834487ad22b1f33b (diff)
download	openbsd-39cb4488ec5412e0f592f7fabdb5ab22cded5edc.tar.gz openbsd-39cb4488ec5412e0f592f7fabdb5ab22cded5edc.tar.bz2 openbsd-39cb4488ec5412e0f592f7fabdb5ab22cded5edc.zip

Fix CVE-2014-3508, pretty printing and OID validation:

- make sure the output buffer is always NUL terminated if buf_len was initially greater than zero. - reject OIDs that are too long, too short, or not in proper base-127 Based on https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87 ok bcook@

Diffstat (limited to 'src/lib/libssl/d1_both.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: