1. 20 7月, 2023 1 次提交
  2. 18 7月, 2023 1 次提交
  3. 02 6月, 2023 1 次提交
    • R
      Restrict the size of OBJECT IDENTIFIERs that OBJ_obj2txt will translate · b436274c
      Richard Levitte 提交于
      OBJ_obj2txt() would translate any size OBJECT IDENTIFIER to canonical
      numeric text form.  For gigantic sub-identifiers, this would take a very
      long time, the time complexity being O(n^2) where n is the size of that
      sub-identifier.
      
      To mitigate this, a restriction on the size that OBJ_obj2txt() will
      translate to canonical numeric text form is added, based on RFC 2578
      (STD 58), which says this:
      
      > 3.5. OBJECT IDENTIFIER values
      >
      > An OBJECT IDENTIFIER value is an ordered list of non-negative numbers.
      > For the SMIv2, each number in the list is referred to as a sub-identifier,
      > there are at most 128 sub-identifiers in a value, and each sub-identifier
      > has a maximum value of 2^32-1 (4294967295 decimal).
      
      Fixes otc/security#96
      Fixes CVE-2023-2650
      Reviewed-by: NMatt Caswell <matt@openssl.org>
      Reviewed-by: NTomas Mraz <tomas@openssl.org>
      Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
      b436274c
  4. 26 4月, 2023 3 次提交
  5. 12 4月, 2023 1 次提交