diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2016-04-11 13:57:20 +0100 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2016-04-23 00:26:43 +0100 |
commit | c62981390d6cf9e3d612c489b8b77c2913b25807 (patch) | |
tree | 9b9c694270edbf0b45ee918c7f47d84713cb3e40 /test/d2i_test.c | |
parent | ddc606c914e72e770dbe8293a65585b7c3017bba (diff) |
Harden ASN.1 BIO handling of large amounts of data.
If the ASN.1 BIO is presented with a large length field read it in
chunks of increasing size checking for EOF on each read. This prevents
small files allocating excessive amounts of data.
CVE-2016-2109
Thanks to Brian Carpenter for reporting this issue.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Diffstat (limited to 'test/d2i_test.c')
0 files changed, 0 insertions, 0 deletions