Harden ASN.1 BIO handling of large amounts of data. (3d411057) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit 3d411057 authored Apr 11, 2016 by

Dr. Stephen Henson

Harden ASN.1 BIO handling of large amounts of data.



If the ASN.1 BIO is presented with a large length field read it in
chunks of increasing size checking for EOF on each read. This prevents
small files allocating excessive amounts of data.

CVE-2016-2109

Thanks to Brian Carpenter for reporting this issue.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
(cherry picked from commit c6298139)

parent 7a433893

Hide whitespace changes

Inline Side-by-side

Please register or to comment