Google Git
Sign in
flutter / third_party / openssl / d9a9d10f4f8d4ed051f2488a90b012dceb7ec885
commitd9a9d10f4f8d4ed051f2488a90b012dceb7ec885[log] [tgz]
authorDr. Stephen Henson <steve@openssl.org>Thu Apr 19 16:19:56 2012 +0000
committerDr. Stephen Henson <steve@openssl.org>Thu Apr 19 16:19:56 2012 +0000
treedabb138053661e7c2c25d1d5bef7221ef0d5ab04
parent0d2baadfb4dbd36fa323f3ae57ad309744713572 [diff]
Check for potentially exploitable overflows in asn1_d2i_read_bio
BUF_mem_grow and BUF_mem_grow_clean. Refuse attempts to shrink buffer
in CRYPTO_realloc_clean.

Thanks to Tavis Ormandy, Google Security Team, for discovering this
issue and to Adam Langley <agl@chromium.org> for fixing it. (CVE-2012-2110)
4 files changed
tree: dabb138053661e7c2c25d1d5bef7221ef0d5ab04
  1. apps/
  2. bugs/
  3. certs/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. fips/
  9. include/
  10. ms/
  11. Netware/
  12. os2/
  13. perl/
  14. shlib/
  15. ssl/
  16. test/
  17. times/
  18. tools/
  19. util/
  20. VMS/
  21. .cvsignore
  22. ACKNOWLEDGMENTS
  23. CHANGES
  24. CHANGES.SSLeay
  25. config
  26. Configure
  27. e_os.h
  28. e_os2.h
  29. FAQ
  30. INSTALL
  31. install.com
  32. INSTALL.DJGPP
  33. INSTALL.MacOS
  34. INSTALL.NW
  35. INSTALL.OS2
  36. INSTALL.VMS
  37. INSTALL.W32
  38. INSTALL.W64
  39. INSTALL.WCE
  40. LICENSE
  41. Makefile.fips
  42. Makefile.org
  43. Makefile.shared
  44. makevms.com
  45. NEWS
  46. openssl.doxy
  47. openssl.spec
  48. PROBLEMS
  49. README
  50. README.ASN1
  51. README.ECC
  52. README.ENGINE
  53. README.FIPS
  54. STATUS
  55. TABLE