projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 56ea224) | patch
Prevent EBCDIC overread for very long strings
authorMatt Caswell <matt@openssl.org>
Thu, 28 Apr 2016 09:46:55 +0000 (10:46 +0100)
committerMatt Caswell <matt@openssl.org>
Tue, 3 May 2016 09:28:00 +0000 (10:28 +0100)
commit2919516136a4227d9e6d8f2fe66ef976aaf8c561
tree8f5f547d0e0e3087ed196bea20274ce955829932tree | snapshot
parent56ea22458f3f5f1d0148b0a97957de4d56f3d328commit | diff
Prevent EBCDIC overread for very long strings

ASN1 Strings that are over 1024 bytes can cause an overread in
applications using the X509_NAME_oneline() function on EBCDIC systems.
This could result in arbitrary stack data being returned in the buffer.

Issue reported by Guido Vranken.

CVE-2016-2176

Reviewed-by: Andy Polyakov <appro@openssl.org>
crypto/x509/x509_obj.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.