Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
OpenHarmony
Third Party Openssl
提交
80b2ff97
T
Third Party Openssl
项目概览
OpenHarmony
/
Third Party Openssl
1 年多 前同步成功
通知
9
Star
18
Fork
1
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
T
Third Party Openssl
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
提交
80b2ff97
编写于
3月 25, 2009
作者:
D
Dr. Stephen Henson
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Update from stable branch.
上级
7ce8c95d
变更
3
隐藏空白更改
内联
并排
Showing
3 changed file
with
19 addition
and
0 deletion
+19
-0
CHANGES
CHANGES
+5
-0
crypto/asn1/asn1_err.c
crypto/asn1/asn1_err.c
+2
-0
crypto/asn1/tasn_dec.c
crypto/asn1/tasn_dec.c
+12
-0
未找到文件。
CHANGES
浏览文件 @
80b2ff97
...
...
@@ -751,6 +751,11 @@
Changes between 0.9.8j and 0.9.8k [xx XXX xxxx]
*) Fix bug where return value of CMS_SignerInfo_verify_content() was not
checked correctly. This would allow some invalid signed attributes to
appear to verify correctly. (CVE-2009-0591)
[Ivan Nestlerode <inestlerode@us.ibm.com>]
*) Reject UniversalString and BMPString types with invalid lengths. This
prevents a crash in ASN1_STRING_print_ex() which assumes the strings have
a legal length. (CVE-2009-0590)
...
...
crypto/asn1/asn1_err.c
浏览文件 @
80b2ff97
...
...
@@ -199,6 +199,7 @@ static ERR_STRING_DATA ASN1_str_reasons[]=
{
ERR_REASON
(
ASN1_R_BAD_OBJECT_HEADER
)
,
"bad object header"
},
{
ERR_REASON
(
ASN1_R_BAD_PASSWORD_READ
)
,
"bad password read"
},
{
ERR_REASON
(
ASN1_R_BAD_TAG
)
,
"bad tag"
},
{
ERR_REASON
(
ASN1_R_BMPSTRING_IS_WRONG_LENGTH
),
"bmpstring is wrong length"
},
{
ERR_REASON
(
ASN1_R_BN_LIB
)
,
"bn lib"
},
{
ERR_REASON
(
ASN1_R_BOOLEAN_IS_WRONG_LENGTH
),
"boolean is wrong length"
},
{
ERR_REASON
(
ASN1_R_BUFFER_TOO_SMALL
)
,
"buffer too small"
},
...
...
@@ -290,6 +291,7 @@ static ERR_STRING_DATA ASN1_str_reasons[]=
{
ERR_REASON
(
ASN1_R_UNABLE_TO_DECODE_RSA_KEY
),
"unable to decode rsa key"
},
{
ERR_REASON
(
ASN1_R_UNABLE_TO_DECODE_RSA_PRIVATE_KEY
),
"unable to decode rsa private key"
},
{
ERR_REASON
(
ASN1_R_UNEXPECTED_EOC
)
,
"unexpected eoc"
},
{
ERR_REASON
(
ASN1_R_UNIVERSALSTRING_IS_WRONG_LENGTH
),
"universalstring is wrong length"
},
{
ERR_REASON
(
ASN1_R_UNKNOWN_FORMAT
)
,
"unknown format"
},
{
ERR_REASON
(
ASN1_R_UNKNOWN_MESSAGE_DIGEST_ALGORITHM
),
"unknown message digest algorithm"
},
{
ERR_REASON
(
ASN1_R_UNKNOWN_OBJECT_TYPE
)
,
"unknown object type"
},
...
...
crypto/asn1/tasn_dec.c
浏览文件 @
80b2ff97
...
...
@@ -1016,6 +1016,18 @@ int asn1_ex_c2i(ASN1_VALUE **pval, const unsigned char *cont, int len,
case
V_ASN1_SET
:
case
V_ASN1_SEQUENCE
:
default:
if
(
utype
==
V_ASN1_BMPSTRING
&&
(
len
&
1
))
{
ASN1err
(
ASN1_F_ASN1_EX_C2I
,
ASN1_R_BMPSTRING_IS_WRONG_LENGTH
);
goto
err
;
}
if
(
utype
==
V_ASN1_UNIVERSALSTRING
&&
(
len
&
3
))
{
ASN1err
(
ASN1_F_ASN1_EX_C2I
,
ASN1_R_UNIVERSALSTRING_IS_WRONG_LENGTH
);
goto
err
;
}
/* All based on ASN1_STRING and handled the same */
if
(
!*
pval
)
{
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录