Skip to content
  1. Sep 21, 2016
  2. Sep 20, 2016
  3. Sep 15, 2016
  4. Sep 14, 2016
    • Matt Caswell's avatar
      Add some sanity checks around usage of t_fromb64() · 68f11e82
      Matt Caswell authored
      
      
      The internal SRP function t_fromb64() converts from base64 to binary. It
      does not validate that the size of the destination is sufficiently large -
      that is up to the callers. In some places there was such a check, but not
      in others.
      
      Add an argument to t_fromb64() to provide the size of the destination
      buffer and validate that we don't write too much data. Also add some sanity
      checks to the callers where appropriate.
      
      With thanks to Shi Lei for reporting this issue.
      
      Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
      (cherry picked from commit 73f0df83)
      68f11e82
  5. Sep 13, 2016
  6. Sep 12, 2016
  7. Sep 11, 2016
  8. Sep 09, 2016
  9. Sep 08, 2016
  10. Sep 07, 2016
  11. Sep 06, 2016
  12. Aug 31, 2016
  13. Aug 30, 2016
  14. Aug 26, 2016