Fix a crash in the asn1parse command

author Bernd Edlinger <bernd.edlinger@hotmail.de>

Sat, 31 Mar 2018 19:09:32 +0000 (21:09 +0200)

committer Bernd Edlinger <bernd.edlinger@hotmail.de>

Tue, 3 Apr 2018 14:05:19 +0000 (16:05 +0200)
author Bernd Edlinger <bernd.edlinger@hotmail.de>
Sat, 31 Mar 2018 19:09:32 +0000 (21:09 +0200)
committer Bernd Edlinger <bernd.edlinger@hotmail.de>
Tue, 3 Apr 2018 14:05:19 +0000 (16:05 +0200)
diff --git a/apps/asn1pars.c b/apps/asn1pars.c

index 1ac261c7629ecbb14b051d40e80e87343dc35ab3..39b9f8b0c89093a97030a37f2ed6aaa3aacf4efa 100644 (file)
--- a/apps/asn1pars.c
+++ b/apps/asn1pars.c
@@ -212,7 +212,7 @@ int asn1parse_main(int argc, char **argv)
              ASN1_TYPE *atmp;
              int typ;
              j = atoi(sk_OPENSSL_STRING_value(osk, i));
-            if (j == 0) {
+            if (j <= 0 || j >= tmplen) {
                  BIO_printf(bio_err, "'%s' is an invalid number\n",
                             sk_OPENSSL_STRING_value(osk, i));
                  continue;
author	Bernd Edlinger <bernd.edlinger@hotmail.de>
	Sat, 31 Mar 2018 19:09:32 +0000 (21:09 +0200)
committer	Bernd Edlinger <bernd.edlinger@hotmail.de>
	Tue, 3 Apr 2018 14:05:19 +0000 (16:05 +0200)