 fox
II/IDEC networks :: obsd.info.14 :: / http://marc.info/?l=openbsd-cvs&m=140747363905604&w=2
|
Login |
[#]
http://marc.info/?l=openbsd-cvs&m=140747363905604&w=2
openbsd-cvs(obsdave,2) — All
2014-08-08 09:55:05
Module name: src
Changes by: guenther@cvs.openbsd.org 2014/08/07 22:53:43
Modified files:
lib/libssl/src/crypto/asn1: a_object.c
lib/libssl/src/crypto/objects: obj_dat.c
Log message:
Fix CVE-2014-3508, pretty printing and OID validation:
- make sure the output buffer is always NUL terminated if buf_len
was initially greater than zero.
- reject OIDs that are too long, too short, or not in proper base-127
Based on
<a href="https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87" rel="nofollow">https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87</a>
ok bcook@
openbsd-cvs(obsdave,2) — All
2014-08-08 09:55:05
Module name: src
Changes by: guenther@cvs.openbsd.org 2014/08/07 22:53:43
Modified files:
lib/libssl/src/crypto/asn1: a_object.c
lib/libssl/src/crypto/objects: obj_dat.c
Log message:
Fix CVE-2014-3508, pretty printing and OID validation:
- make sure the output buffer is always NUL terminated if buf_len
was initially greater than zero.
- reject OIDs that are too long, too short, or not in proper base-127
Based on
<a href="https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87" rel="nofollow">https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87</a>
ok bcook@