CVSROOT: /cvs Module name: src Changes by: js...@cvs.openbsd.org 2018/05/12 11:39:05
Modified files:
lib/libcrypto/asn1: a_bitstr.c
Log message:
Add a missing bounds check in c2i_ASN1_BIT_STRING().
This could potentially result in a left shift that exceeded the size of the
storage type.
Issue found by Simon Friedberger, Robert Merget and Juraj Somorovsky.
ok inoguchi@ tb@
