generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix ASN.1 parsing of certain invalid structures that can result

Browse Source 
in a denial of service.  (CVE-2006-2937)  [Steve Henson]
This commit is contained in:
Mark J. Cox 2006-09-28 13:20:44 +00:00
parent 3ff55e9680
commit 348be7ec60
2 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
CHANGES
View File

@ -4,6 +4,9 @@
Changes between 0.9.8d and 0.9.9 [xx XXX xxxx] Changes between 0.9.8d and 0.9.9 [xx XXX xxxx]
*) Fix ASN.1 parsing of certain invalid structures that can result
in a denial of service. (CVE-2006-2937) [Steve Henson]
*) Fix buffer overflow in SSL_get_shared_ciphers() function. *) Fix buffer overflow in SSL_get_shared_ciphers() function.
(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team] (CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team]

1
crypto/asn1/tasn_dec.c
View File

@ -832,6 +832,7 @@ static int asn1_d2i_ex_primitive(ASN1_VALUE **pval,
} }
else if (ret == -1) else if (ret == -1)
return -1; return -1;
ret = 0;
/* SEQUENCE, SET and "OTHER" are left in encoded form */ /* SEQUENCE, SET and "OTHER" are left in encoded form */
if ((utype == V_ASN1_SEQUENCE) if ((utype == V_ASN1_SEQUENCE)
|| (utype == V_ASN1_SET) || (utype == V_ASN1_OTHER)) || (utype == V_ASN1_SET) || (utype == V_ASN1_OTHER))