[Midnightbsd-cvs] src: crypto/asn1: The function ASN1_STRING_print_ex does not properly
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Wed Apr 22 14:06:37 EDT 2009
Log Message:
-----------
The function ASN1_STRING_print_ex does not properly validate the lengths
of BMPString or UniversalString objects before attempting to print them.
Remotely exploitable bug in openssl
Modified Files:
--------------
src/crypto/openssl/crypto/asn1:
asn1.h (r1.1.1.2 -> r1.2)
(http://cvsweb.midnightbsd.org/src/crypto/openssl/crypto/asn1/asn1.h?r1=1.1.1.2&r2=1.2)
asn1_err.c (r1.1.1.2 -> r1.2)
(http://cvsweb.midnightbsd.org/src/crypto/openssl/crypto/asn1/asn1_err.c?r1=1.1.1.2&r2=1.2)
tasn_dec.c (r1.3 -> r1.4)
(http://cvsweb.midnightbsd.org/src/crypto/openssl/crypto/asn1/tasn_dec.c?r1=1.3&r2=1.4)
More information about the Midnightbsd-cvs
mailing list