projects
/
oweals
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
d8afda6
)
evp: prevent underflow in base64 decoding
author
Geoff Thorpe
<geoff@openssl.org>
Sun, 4 May 2014 22:44:14 +0000
(18:44 -0400)
committer
Geoff Thorpe
<geoff@openssl.org>
Tue, 6 May 2014 22:10:23 +0000
(18:10 -0400)
This patch resolves RT ticket #2608.
Thanks to Robert Dugal for originally spotting this, and to David
Ramos for noticing that the ball had been dropped.
Signed-off-by: Geoff Thorpe <geoff@openssl.org>
crypto/evp/encode.c
patch
|
blob
|
history
diff --git
a/crypto/evp/encode.c
b/crypto/evp/encode.c
index 28546a84bc2b61e4150af841d264a9d66386c52a..4654bdc61a64838353562a57ec85e14a623fdfa2 100644
(file)
--- a/
crypto/evp/encode.c
+++ b/
crypto/evp/encode.c
@@
-324,6
+324,7
@@
int EVP_DecodeUpdate(EVP_ENCODE_CTX *ctx, unsigned char *out, int *outl,
v=EVP_DecodeBlock(out,d,n);
n=0;
if (v < 0) { rv=0; goto end; }
+ if (eof > v) { rv=-1; goto end; }
ret+=(v-eof);
}
else