Google Git
Sign in
flutter / third_party / openssl / 0ed26acce328ec16a3aa635f1ca37365e8c7403a
commit0ed26acce328ec16a3aa635f1ca37365e8c7403a[log] [tgz]
authorDr. Stephen Henson <steve@openssl.org>Thu Jul 21 15:24:16 2016 +0100
committerDr. Stephen Henson <steve@openssl.org>Fri Jul 22 15:15:17 2016 +0100
treea4a634f017e5d9061fb55daccf8bc6f0adf26048
parentd0c4415de5eaa555ead6eb99660e46410b45e181 [diff]
Fix OOB read in TS_OBJ_print_bio().

TS_OBJ_print_bio() misuses OBJ_txt2obj: it should print the result
as a null terminated buffer. The length value returned is the total
length the complete text reprsentation would need not the amount of
data written.

CVE-2016-2180

Thanks to Shi Lei for reporting this bug.

Reviewed-by: Matt Caswell <matt@openssl.org>
1 file changed
tree: a4a634f017e5d9061fb55daccf8bc6f0adf26048
  1. apps/
  2. Configurations/
  3. crypto/
  4. demos/
  5. doc/
  6. engines/
  7. external/
  8. fuzz/
  9. include/
  10. ms/
  11. os-dep/
  12. ssl/
  13. test/
  14. tools/
  15. util/
  16. VMS/
  17. .gitattributes
  18. .gitignore
  19. .travis-create-release.sh
  20. .travis.yml
  21. ACKNOWLEDGEMENTS
  22. appveyor.yml
  23. AUTHORS
  24. build.info
  25. CHANGES
  26. config
  27. config.com
  28. Configure
  29. CONTRIBUTING
  30. e_os.h
  31. FAQ
  32. INSTALL
  33. LICENSE
  34. Makefile.shared
  35. NEWS
  36. NOTES.DJGPP
  37. NOTES.PERL
  38. NOTES.VMS
  39. NOTES.WIN
  40. README
  41. README.ECC
  42. README.ENGINE
  43. README.FIPS