Skip to content
Commit 370ac320 authored by Emilia Kasper's avatar Emilia Kasper Committed by Matt Caswell
Browse files

Fix length checks in X509_cmp_time to avoid out-of-bounds reads.



Also tighten X509_cmp_time to reject more than three fractional
seconds in the time; and to reject trailing garbage after the offset.

CVE-2015-1789

Reviewed-by: default avatarViktor Dukhovni <viktor@openssl.org>
Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
parent dd90a91d
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment