[openssl/openssl] b91ad3: Fix a crash in v2i_IPAddrBlocks()

Matt Caswell noreply at github.com
Fri Jul 22 07:55:31 UTC 2022


  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: b91ad3c69c27c35be4fd7f1e8811c33c31b02afd
      https://github.com/openssl/openssl/commit/b91ad3c69c27c35be4fd7f1e8811c33c31b02afd
  Author: Matt Caswell <matt at openssl.org>
  Date:   2022-07-22 (Fri, 22 Jul 2022)

  Changed paths:
    M crypto/x509/v3_addr.c
    M test/v3ext.c

  Log Message:
  -----------
  Fix a crash in v2i_IPAddrBlocks()

If an IP address prefix value is supplied that is too large then a crash
can result. v2i_IPAddrBlocks() should sanity check the prefix value, as
should X509v3_addr_add_prefix().

Reported by Theo Buehler (@botovq)

Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
(Merged from https://github.com/openssl/openssl/pull/18523)




More information about the openssl-commits mailing list