commit | d87021d2467fca449d98f1251ddc3c87b9b97f30 | [log] [tgz] |
---|---|---|
author | David Benjamin <davidben@chromium.org> | Tue Jun 16 11:51:15 2015 -0400 |
committer | Adam Langley <agl@google.com> | Tue Jun 16 19:07:15 2015 +0000 |
tree | 620d3b72640a66ed8d53ac5a55170bb4b946619d | |
parent | 184494dfccbf854212a82e230465b98ea1e86afe [diff] |
Fix length checks in X509_cmp_time to avoid out-of-bounds reads. Also tighten X509_cmp_time to reject more than three fractional seconds in the time; and to reject trailing garbage after the offset. CVE-2015-1789 (Imported from upstream's 9bc3665ac9e3c36f7762acd3691e1115d250b030) Change-Id: I2091b2d1b691c177d58dc7960e2e7eb4c97b1f69 Reviewed-on: https://boringssl-review.googlesource.com/5124 Reviewed-by: Adam Langley <agl@google.com>