git.openssl.org Git - openssl.git/commit

author	Matt Caswell <matt@openssl.org>
	Wed, 18 Aug 2021 11:24:22 +0000 (12:24 +0100)
committer	Matt Caswell <matt@openssl.org>
	Tue, 24 Aug 2021 13:22:06 +0000 (14:22 +0100)
commit	ad6ac17489241574136b7d035f01f6175dd9c941
tree	9b6a1daf281a7a659322da4651a30a838fe7415f	tree \| snapshot
parent	ed3f51ec7d2f8956bff7bedf99b65ff1595e02e8	commit \| diff

Fix i2v_GENERAL_NAME to not assume NUL terminated strings

ASN.1 strings may not be NUL terminated. Don't assume they are.

CVE-2021-3712

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: David Benjamin <davidben@google.com>

crypto/x509/v3_san.c		diff \| blob \| history
crypto/x509/v3_utl.c		diff \| blob \| history
include/crypto/x509.h		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom