The branch OpenSSL_1_0_2-stable has been updated
via 13bacff9aa9a457218ccdcf83224357c9464676e (commit)
from e1be1dce7722ee40ced16b1b91d5e1b9fce13d08 (commit)
- Log -----------------------------------------------------------------
commit 13bacff9aa9a457218ccdcf83224357c9464676e
Author: Dr. Stephen Henson <st...@openssl.org>
Date: Fri Aug 5 17:59:32 2016 +0100
Sanity check input length in OPENSSL_uni2asc().
Thanks to Hanno Böck for reporting this bug.
Reviewed-by: Rich Salz <rs...@openssl.org>
(cherry picked from commit 39a43280316f1b9c45be5ac5b04f4f5c3f923686)
Conflicts:
crypto/pkcs12/p12_utl.c
-----------------------------------------------------------------------
Summary of changes:
crypto/pkcs12/p12_utl.c | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/crypto/pkcs12/p12_utl.c b/crypto/pkcs12/p12_utl.c
index a0b992e..e466f76 100644
--- a/crypto/pkcs12/p12_utl.c
+++ b/crypto/pkcs12/p12_utl.c
@@ -91,6 +91,10 @@ char *OPENSSL_uni2asc(unsigned char *uni, int unilen)
{
int asclen, i;
char *asctmp;
+
+ /* string must contain an even number of bytes */
+ if (unilen & 1)
+ return NULL;
asclen = unilen / 2;
/* If no terminating zero allow for one */
if (!unilen || uni[unilen - 1])
_____
openssl-commits mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
