Google Git
Sign in
flutter / third_party / openssl / 1cfd255c9123cdb4637cc9a65c6665fe4a06c6d5
commit1cfd255c9123cdb4637cc9a65c6665fe4a06c6d5[log] [tgz]
authorDr. Stephen Henson <steve@openssl.org>Thu Sep 25 23:28:48 2014 +0100
committerDr. Stephen Henson <steve@openssl.org>Mon Sep 29 12:01:05 2014 +0100
tree86e26adccb01a6f970de107123649ea51c055d91
parent3d81ec5b92e1141762eb72caf2aeb9b2cd019a78 [diff]
Add additional DigestInfo checks.

Reencode DigestInto in DER and check against the original: this
will reject any improperly encoded DigestInfo structures.

Note: this is a precautionary measure, there is no known attack
which can exploit this.

Thanks to Brian Smith for reporting this issue.
Reviewed-by: Tim Hudson <tjh@openssl.org>
2 files changed
tree: 86e26adccb01a6f970de107123649ea51c055d91
  1. apps/
  2. bugs/
  3. certs/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. fips/
  9. include/
  10. ms/
  11. Netware/
  12. os2/
  13. perl/
  14. shlib/
  15. ssl/
  16. test/
  17. times/
  18. tools/
  19. util/
  20. VMS/
  21. .cvsignore
  22. .gitignore
  23. ACKNOWLEDGMENTS
  24. CHANGES
  25. CHANGES.SSLeay
  26. config
  27. Configure
  28. e_os.h
  29. e_os2.h
  30. FAQ
  31. GitConfigure
  32. GitMake
  33. INSTALL
  34. install.com
  35. INSTALL.DJGPP
  36. INSTALL.NW
  37. INSTALL.OS2
  38. INSTALL.VMS
  39. INSTALL.W32
  40. INSTALL.W64
  41. INSTALL.WCE
  42. LICENSE
  43. Makefile.fips
  44. Makefile.org
  45. Makefile.shared
  46. makevms.com
  47. NEWS
  48. openssl.doxy
  49. openssl.spec
  50. PROBLEMS
  51. README
  52. README.ASN1
  53. README.ECC
  54. README.ENGINE
  55. README.FIPS
  56. TABLE