Emilia Kasper 57b0c4697a Fix OID handling: ...

- Upon parsing, reject OIDs with invalid base-128 encoding.
- Always NUL-terminate the destination buffer in OBJ_obj2txt printing function.

CVE-2014-3508

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

2014-08-06 21:30:39 +01:00

..

.cvsignore

Add emacs cache files to .cvsignore.

2005-04-11 14:17:07 +00:00

Makefile

Add error checking to obj_xref.pl and add command line support for data

2009-02-10 13:03:31 +00:00

o_names.c

Revert the size_t modifications from HEAD that had led to more

2008-11-12 03:58:08 +00:00

obj_dat.c

Fix OID handling:

2014-08-06 21:30:39 +01:00

obj_dat.h

PR: 2149

2010-01-25 16:07:51 +00:00

obj_dat.pl

Constify obj_dat.[ch], as well as minimize linker relocations.

2007-09-18 21:05:21 +00:00

obj_err.c

Update from 0.9.8 stable. Eliminate duplicate error codes.

2006-11-21 21:29:44 +00:00

obj_lib.c

Revert the size_t modifications from HEAD that had led to more

2008-11-12 03:58:08 +00:00

obj_mac.h

PR: 2149

2010-01-25 16:07:51 +00:00

obj_mac.num

Update from stable branch.

2009-03-25 19:02:22 +00:00

obj_xref.c

Update obsolete email address...

2008-11-05 18:39:08 +00:00

obj_xref.h

make update

2013-02-05 16:46:21 +00:00

obj_xref.txt

add support for DSA with SHA2

2007-02-03 14:41:12 +00:00

objects.h

Fix for VC++ 6 which chokes on the empty argument.

2009-04-04 11:44:48 +00:00

objects.pl

Produce meaningful error if sanity check fails.

2008-03-19 17:01:12 +00:00

objects.README

I got sick and tired of having to keep track of NIDs when such a thing

2000-07-05 02:45:36 +00:00

objects.txt

PR: 2149

2010-01-25 16:07:51 +00:00

objxref.pl

Use basename of objxref.pl not whole path in generated header.

2009-04-06 16:16:23 +00:00