[openssl/openssl] bb2e11: Fix a crash in v2i_IPAddrBlocks()

Matt Caswell noreply at github.com
Fri Jul 22 08:24:29 UTC 2022


  Branch: refs/heads/openssl-3.0
  Home:   https://github.com/openssl/openssl
  Commit: bb2e11081aa9ec923680227d62b82a6ee416f0be
      https://github.com/openssl/openssl/commit/bb2e11081aa9ec923680227d62b82a6ee416f0be
  Author: Matt Caswell <matt at openssl.org>
  Date:   2022-07-22 (Fri, 22 Jul 2022)

  Changed paths:
    M crypto/x509/v3_addr.c
    M test/v3ext.c

  Log Message:
  -----------
  Fix a crash in v2i_IPAddrBlocks()

If an IP address prefix value is supplied that is too large then a crash
can result. v2i_IPAddrBlocks() should sanity check the prefix value, as
should X509v3_addr_add_prefix().

Reported by Theo Buehler (@botovq)

Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
(Merged from https://github.com/openssl/openssl/pull/18523)

(cherry picked from commit b91ad3c69c27c35be4fd7f1e8811c33c31b02afd)




More information about the openssl-commits mailing list