Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / external / boringssl / refs/tags/fp2-sibon-18.02.0
commitdd43efed74986e0335a415bea6a5ff24abaa746c[log] [tgz]
authorAdam Vartanian <flooey@google.com>Mon Apr 10 14:56:33 2017 +0100
committerDirk Vogt <dirk@fairphone.com>Mon Jun 19 13:40:14 2017 +0200
treec4fa17288b37bb31cf95e075e2c030fecb53b265
parentcf6685274dea9816ff9c65c1af86d03f385c9b35 [diff]
CVE 2016-2109 fix

Read ASN.1 data in chunks to prevent invalid inputs from allocating
excessive amounts of data.

FPIIM-1136

Bug: 35443725
Test: make libcrypto
Test: manually ran testcase from OpenSSL
Change-Id: I5a734b20a8f37cd58216de1781728947ea38b672
Merged-In: Ia9d6aa40726c0cba26e2060108112f33e00e8270
Merged-In: I31285d4bb1b4c069c63eb992d5b1595cdd03713e
(cherry picked from commit 56abb3ed723a1cf4c8c2df5a124c5b42f3c70f33)
1 file changed
tree: c4fa17288b37bb31cf95e075e2c030fecb53b265
  1. linux-aarch64/
  2. linux-arm/
  3. linux-x86/
  4. linux-x86_64/
  5. mac-x86/
  6. mac-x86_64/
  7. src/
  8. win-x86/
  9. win-x86_64/
  10. arm_arch.hsrc/crypto/arm_arch.h
  11. includesrc/include
  12. Android.mk
  13. android_compat_hacks.c
  14. android_compat_keywrap.c
  15. BORINGSSL_REVISION
  16. crypto-sources.mk
  17. err_data.c
  18. flavor.mk
  19. MODULE_LICENSE_BSD_LIKE
  20. NOTICE
  21. rules.mk
  22. sources.mk
  23. ssl-sources.mk