diff options
| author | guenther <> | 2014-08-08 04:53:43 +0000 | 
|---|---|---|
| committer | guenther <> | 2014-08-08 04:53:43 +0000 | 
| commit | 39cb4488ec5412e0f592f7fabdb5ab22cded5edc (patch) | |
| tree | 3d49e2ab368dd2c4623345f392a9a87627e2d9ff /src/lib/libssl/ssl_lib.c | |
| parent | 799e1b07f7a6a3c12b4d9bcb834487ad22b1f33b (diff) | |
| download | openbsd-39cb4488ec5412e0f592f7fabdb5ab22cded5edc.tar.gz openbsd-39cb4488ec5412e0f592f7fabdb5ab22cded5edc.tar.bz2 openbsd-39cb4488ec5412e0f592f7fabdb5ab22cded5edc.zip | |
Fix CVE-2014-3508, pretty printing and OID validation:
 - make sure the output buffer is always NUL terminated if buf_len
   was initially greater than zero.
 - reject OIDs that are too long, too short, or not in proper base-127
Based on
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87
ok bcook@
Diffstat (limited to 'src/lib/libssl/ssl_lib.c')
0 files changed, 0 insertions, 0 deletions
