[openssl/openssl] 3fc784: stricter parser for ipv4_from_asc

David Benjamin Mon, 24 Jun 2024 06:45:05 -0700

  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: 3fc784835cdb8489117c2680e867cd32b3b70fbe
      
https://github.com/openssl/openssl/commit/3fc784835cdb8489117c2680e867cd32b3b70fbe
  Author: David Benjamin <david...@google.com>
  Date:   2024-06-24 (Mon, 24 Jun 2024)


  Changed paths:
    M crypto/x509/v3_utl.c
    M test/x509_internal_test.c

  Log Message:
  -----------
  stricter parser for ipv4_from_asc

reject invalid IPv4 addresses in ipv4_from_asc

The old scanf-based parser accepted all kinds of invalid inputs like:
"1.2.3.4.5"
"1.2.3.4 "
"1.2.3. 4"
" 1.2.3.4"
"1.2.3.4."
"1.2.3.+4"
"1.2.3.4.example.test"
"1.2.3.01"
"1.2.3.0x1"
Thanks to Amir Mohamadi for pointing this out.

Reviewed-by: Neil Horman <nhor...@openssl.org>
Reviewed-by: Tomas Mraz <to...@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24438)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications

[openssl/openssl] 3fc784: stricter parser for ipv4_from_asc

Reply via email to