diff options
author | Matt Caswell <matt@openssl.org> | 2019-10-30 14:23:18 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2019-11-04 13:49:19 +0100 |
commit | aec9667bd19a8ca9bdd519db3a231a95b9e92674 (patch) | |
tree | a8aad958d436f5ab95151169f6c03c919d03a65d /fuzz/corpora/crl/a7c65d4afa4c3bfe7bbf8c37a587b61157ee8652 | |
parent | Don't leak memory in the event of a failure in i2v_GENERAL_NAMES (diff) | |
download | openssl-aec9667bd19a8ca9bdd519db3a231a95b9e92674.tar.xz openssl-aec9667bd19a8ca9bdd519db3a231a95b9e92674.zip |
Don't assume the type we read was the type we expected
i2v_GENERAL_NAME and GENERAL_NAME_print were assuming that the type of
of a GENERAL_NAME (OTHERNAME) that we read in was the type we expected
it to be. If its something else then this can cause unexpected
behaviour. In the added fuzz test case an OOB read was occurring.
This issue was recently added by commit 4baee2d.
Credit to OSSFuzz for finding this issue.
Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10300)
Diffstat (limited to 'fuzz/corpora/crl/a7c65d4afa4c3bfe7bbf8c37a587b61157ee8652')
0 files changed, 0 insertions, 0 deletions