CVSROOT: /cvs
Module name: src
Changes by: guent...@cvs.openbsd.org 2014/08/07 22:53:43
Modified files:
lib/libssl/src/crypto/asn1: a_object.c
lib/libssl/src/crypto/objects: obj_dat.c
Log message:
Fix CVE-2014-3508, pretty printing and OID validation:
- make sure the output buffer is always NUL terminated if buf_len
was initially greater than zero.
- reject OIDs that are too long, too short, or not in proper base-127
Based on
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=0042fb5fd1c9d257d713b15a1f45da05cf5c1c87
ok bcook@
