)]}'
{
  "commit": "f219ae96bef5be04e78ddb5b5226ccb6439bd3ed",
  "tree": "8cac5f4964647930c083d31a37197dfa149be66f",
  "parents": [
    "60d61196e43cfcea45936de667f98f5d6a6fa684"
  ],
  "author": {
    "name": "David Benjamin",
    "email": "davidben@google.com",
    "time": "Tue Jan 31 13:36:55 2023 -0500"
  },
  "committer": {
    "name": "Boringssl LUCI CQ",
    "email": "boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com",
    "time": "Tue Feb 07 16:20:47 2023 +0000"
  },
  "message": "Fix the type of x400Address in GENERAL_NAME\n\nThis fixes CVE-2023-0286.\n\nThe main impact is that GENERAL_NAME_cmp, when given x400Addresses, can\ninterpret a pointer with the wrong type. Applications that set\nX509_V_FLAG_CRL_CHECK and take CRLs from untrusted sources should take\nthis patch.\n\nChange-Id: Ib76265fa098df3cb0db075646773c14d59d0ca75\nReviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/56985\nCommit-Queue: Bob Beck \u003cbbe@google.com\u003e\nAuto-Submit: David Benjamin \u003cdavidben@google.com\u003e\nReviewed-by: Bob Beck \u003cbbe@google.com\u003e\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "4f931b3e72de8daec2194f7fbd5ee5f7a3acee12",
      "old_mode": 33188,
      "old_path": "crypto/x509/x509_test.cc",
      "new_id": "2fa22e7ad92b380d14d56d1f27bcecc56b616326",
      "new_mode": 33188,
      "new_path": "crypto/x509/x509_test.cc"
    },
    {
      "type": "modify",
      "old_id": "f313c797dfaea1a9ea252fc58b5038006532dd52",
      "old_mode": 33188,
      "old_path": "crypto/x509v3/v3_genn.c",
      "new_id": "aafad9396048a9fac1ed7f75ff262aa7073f05b5",
      "new_mode": 33188,
      "new_path": "crypto/x509v3/v3_genn.c"
    },
    {
      "type": "modify",
      "old_id": "f305dae87aef3284d9134829b9648f5f87a88387",
      "old_mode": 33188,
      "old_path": "include/openssl/x509v3.h",
      "new_id": "9002286c54d622b952e6cdc790fd09db21a63f5f",
      "new_mode": 33188,
      "new_path": "include/openssl/x509v3.h"
    }
  ]
}
