)]}'
{
  "commit": "14b07a02a6b16f24e6bd6cbb11f9904e9ee50442",
  "tree": "145a6ecb8df99975e52dab2cc2047f63b1522eb0",
  "parents": [
    "f040d3c7e1a2da2cd1902ef90fd4b6daed061296"
  ],
  "author": {
    "name": "Steven Valdez",
    "email": "svaldez@google.com",
    "time": "Tue Apr 26 12:43:39 2016 -0400"
  },
  "committer": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Tue Apr 26 17:06:16 2016 +0000"
  },
  "message": "Harden ASN.1 BIO handling of large amounts of data.\n\nIf the ASN.1 BIO is presented with a large length field read it in\nchunks of increasing size checking for EOF on each read. This prevents\nsmall files allocating excessive amounts of data.\n\nCVE-2016-2109\n\nThanks to Brian Carpenter for reporting this issue.\n\n(Imported from upstream\u0027s f32774087f7b3db1f789688368d16d917757421e)\n\nChange-Id: Id1b0d4436c4879d0ba7d3b7482b937cafffa28f7\nReviewed-on: https://boringssl-review.googlesource.com/7741\nReviewed-by: David Benjamin \u003cdavidben@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "f8845d8a654f1ca8933f59054716daf8386e99c3",
      "old_mode": 33188,
      "old_path": "crypto/asn1/a_d2i_fp.c",
      "new_id": "b544971911fc76285c5a6013a9e0c6c2317d9428",
      "new_mode": 33188,
      "new_path": "crypto/asn1/a_d2i_fp.c"
    }
  ]
}