Harden ASN.1 BIO handling of large amounts of data. (c6298139) · Commits · CYBER - Cyber Security / TS 103 523 MSP / ETS / ETS OpenSSL

Commit c6298139 authored Apr 11, 2016 by

Dr. Stephen Henson

Harden ASN.1 BIO handling of large amounts of data.



If the ASN.1 BIO is presented with a large length field read it in
chunks of increasing size checking for EOF on each read. This prevents
small files allocating excessive amounts of data.

CVE-2016-2109

Thanks to Brian Carpenter for reporting this issue.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

parent ddc606c9

Hide whitespace changes

Inline Side-by-side

Please register or to comment