projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(from:
0ed26ac
)
Fix OOB read in TS_OBJ_print_bio().
author
Dr. Stephen Henson
<steve@openssl.org>
Thu, 21 Jul 2016 14:24:16 +0000
(15:24 +0100)
committer
Dr. Stephen Henson
<steve@openssl.org>
Fri, 22 Jul 2016 14:15:17 +0000
(15:15 +0100)
TS_OBJ_print_bio() misuses OBJ_txt2obj: it should print the result
as a null terminated buffer. The length value returned is the total
length the complete text reprsentation would need not the amount of
data written.
CVE-2016-2180
Thanks to Shi Lei for reporting this bug.
Reviewed-by: Matt Caswell <matt@openssl.org>
No differences found
projects / openssl.git / commitdiff