Google Git
Sign in
boringssl / boringssl / d87021d2467fca449d98f1251ddc3c87b9b97f30
commitd87021d2467fca449d98f1251ddc3c87b9b97f30[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Tue Jun 16 11:51:15 2015 -0400
committerAdam Langley <agl@google.com>Tue Jun 16 19:07:15 2015 +0000
tree620d3b72640a66ed8d53ac5a55170bb4b946619d
parent184494dfccbf854212a82e230465b98ea1e86afe [diff]
Fix length checks in X509_cmp_time to avoid out-of-bounds reads.

Also tighten X509_cmp_time to reject more than three fractional
seconds in the time; and to reject trailing garbage after the offset.

CVE-2015-1789

(Imported from upstream's 9bc3665ac9e3c36f7762acd3691e1115d250b030)

Change-Id: I2091b2d1b691c177d58dc7960e2e7eb4c97b1f69
Reviewed-on: https://boringssl-review.googlesource.com/5124
Reviewed-by: Adam Langley <agl@google.com>
1 file changed
tree: 620d3b72640a66ed8d53ac5a55170bb4b946619d
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. LICENSE
  14. STYLE