wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/crypto/pem
History
Dr. Stephen Henson 298d823bf8 Sanity check PVK file fields. 
PVK files with abnormally large length or salt fields can cause an
integer overflow which can result in an OOB read and heap corruption.
However this is an rarely used format and private key files do not
normally come from untrusted sources the security implications not
significant.

Fix by limiting PVK length field to 100K and salt to 10K: these should be
more than enough to cover any files encountered in practice.

Issue reported by Guido Vranken.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(cherry picked from commit 5f57abe2b1)
2016-03-04 01:26:13 +00:00
..
Makefile Fix the update target and remove duplicate file updates 2015-05-23 11:22:10 +02:00
message
pem.h Fix formatting error in pem.h 2015-01-22 14:22:19 +00:00
pem2.h Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_all.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_err.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_info.c Fix missing malloc return value checks 2015-11-09 23:00:37 +00:00
pem_lib.c Fix uninitialized variable warning 2015-03-25 15:19:20 +01:00
pem_oth.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_pk8.c check for error when creating PKCS#8 structure 2015-05-28 18:02:19 +01:00
pem_pkey.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_seal.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_sign.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_x509.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pem_xaux.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
pkcs7.lis
pvkfmt.c Sanity check PVK file fields. 2016-03-04 01:26:13 +00:00