granicus.if.org Git - openssl/commit

]> granicus.if.org Git - openssl/commit

author	Emilia Kasper <emilia@openssl.org>
	Mon, 1 Dec 2014 14:04:02 +0000 (15:04 +0100)
committer	Emilia Kasper <emilia@openssl.org>
	Fri, 5 Dec 2014 15:32:39 +0000 (16:32 +0100)
commit	33d5ba862939ff8db70a9e36fc9a326fab3e8d98
tree	2c0acbb1b45c74ba1a74c4a92db78fd311b6292c	tree \| snapshot
parent	f50ffd10fa08c0762489119a4f36fa86163679ef	commit \| diff

Reject elliptic curve lists of odd lengths.

The Supported Elliptic Curves extension contains a vector of NamedCurves
of 2 bytes each, so the total length must be even. Accepting odd-length
lists was observed to lead to a non-exploitable one-byte out-of-bounds
read in the latest development branches (1.0.2 and master). Released
versions of OpenSSL are not affected.

Thanks to Felix Groebert of the Google Security Team for reporting this issue.

Reviewed-by: Matt Caswell <matt@openssl.org>

ssl/t1_lib.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom